summaryrefslogtreecommitdiffstats
path: root/lasso
Commit message (Collapse)AuthorAgeFilesLines
...
* improve documentation of lasso_login_build_artifact_msgBenjamin Dauvergne2010-03-271-1/+30
|
* use lasso_release_gobject in lasso_login_destroyBenjamin Dauvergne2010-03-271-1/+1
|
* update lasso_login_accept_sso documentationBenjamin Dauvergne2010-03-271-9/+23
|
* ID-FF&SAML2: complete documentation of lasso_login_build_assertionBenjamin Dauvergne2010-03-271-5/+27
|
* Make multiple include loading work in lasso/backward_comp.hBenjamin Dauvergne2010-03-271-1/+2
| | | | | * lasso/backward_comp.h add missing BACKWARD_COMP_H define.
* SAML 2.0&ID-FF 1.2: simplify and complete metadata loading for multi-role ↵Benjamin Dauvergne2010-03-2711-542/+870
| | | | support
* Doc: add all missing methods to documentation section fileBenjamin Dauvergne2010-03-271-2/+2
| | | | | * add missing LASSO_EXPORT too for functions already present in the documentation, but not exported previously.
* XML: in lasso_node_build_xmlNode_from_snippets only set child name if ↵Benjamin Dauvergne2010-03-271-2/+1
| | | | SNIPPET is not of ANY type
* Core: add lasso_set_string_from_prop(char**,xmlNode*,..) functionBenjamin Dauvergne2010-03-272-0/+15
|
* Core: add method to check whether we are IdP or SP of another providerBenjamin Dauvergne2010-03-272-0/+57
| | | | | | | | * lasso/id-ff/profile.{c,h}: the method lasso_profile_sso_role_with, evaluate using the current LassoIdentity content if we are in a relation of IdP or SP toward another provider. This is based on the existence of a federation with this provider.
* SAML 2.0: add attribute profiles stringsBenjamin Dauvergne2010-03-271-0/+7
|
* SAML 2.0: add support for attribute, authentication and authorization ↵Benjamin Dauvergne2010-03-2711-94/+247
| | | | | | | | | | | | | | | | | | | | | | | authorities metadata * server.c,serverprivate.h: add new private method lasso_server_get_firs_providerID_by_role(server, role)w * defederation.c: use new private method lasso_server_get_first_providerID_by_role for find providerID when the argument remote_providerID is null in lasso_defederation_init_notification. * lasso/id-ff/login.c (lasso_login_init_authn_request): use new private method lasso_server_get_first_providerID_by_role. * provider.h: add thre new provider role (authn,pdp,attribute) and four new services (authn,assertionid,attribute,authz) and also a ROLE_ANY value (-1) for catchall purpose and a ROLE_LAST for array sizing. * provider.h: add a LAST member to LassoMdProtocolType enum. * providerprivate.h,provider.c: - removes separate hashtable for descriptors depending on provider role, use only one table named Descriptors. - use the LAST members of enumerations to dimention static string arrays. * provider.h: add a LAST member to the e
* XML: add support for setting attribute in any namespace using element tree ↵Benjamin Dauvergne2010-03-271-2/+37
| | | | syntax
* Support SignatureVerifyHint in SAML 2.0 SSO profile and common message handlingBenjamin Dauvergne2010-03-272-20/+91
|
* Add signature_verify_hint accessor methods to LassoProfileBenjamin Dauvergne2010-03-273-1/+55
| | | | | | | | | | * lasso/id-ff/profile.{c,h}: add a LassoProfileSignatureVerifyHint enumeration and two accessor methods: - lasso_profile_get_signature_verify_hint - lasso_profile_set_signature_verify_hint * lasso/id-ff/profileprivate.h: add private field signature_verify_hint.
* Core: change GObjectAnnotation of lasso_node_export_to_query to state that ↵Benjamin Dauvergne2010-03-271-2/+2
| | | | private_key_file is optional
* SAML 2.0 XML: add header listing strings from XML schemaBenjamin Dauvergne2010-03-272-2/+58
|
* SAML 2.0: fix uninitialized variableBenjamin Dauvergne2010-03-081-4/+4
|
* ID-WSF 1.0: fix bad header name in all inclusive header lasso/id-wsf/id_wsf.hBenjamin Dauvergne2010-03-081-9/+9
|
* XML: move registry mapping into the *_get_type() functionsBenjamin Dauvergne2010-03-028-22/+32
| | | | | | | | | | | | | | * lassoxml/disco_send_single_logout.c: * lassoxml/id-wsf-2.0/sb2_user_interaction_header.c: * lassoxml/id-wsf-2.0/subsref_app_data.c: * lassoxml/lib_assertion.c: * lassoxml/saml-2.0/saml2_condition_abstract.c: * lassoxml/saml-2.0/saml2_encrypted_element.c: * lassoxml/ws/wsa_attributed_uri.c: * lassoxml/ws/wsa_endpoint_reference.c: class_init is only called the first time an object of the given type is created, registry mappings must exist before this time, so I moved the registration code to the _get_type() functions.
* Core: add a level argument to lasso_node_debugBenjamin Dauvergne2010-03-022-3/+4
|
* ID-WSF 2.0: add lasso_soap_envelope_set_relates_to methodBenjamin Dauvergne2010-03-022-0/+29
|
* Core: add macro to remove gobject from listsBenjamin Dauvergne2010-03-021-0/+6
|
* Core: export lasso_build_unique_id into public APIBenjamin Dauvergne2010-03-023-3/+34
| | | | | | | | | | | * lasso/xml/tools.h: add new header to export lasso_build_unique_id as a public API. * lasso/xml/Makefile.am: add tools.h to header list * lasso/xml/tools.c: add GObjectIntrospection annotations to exported functions.
* SAML 2.0: change error code for empty ArtifactResolve response to ↵Benjamin Dauvergne2010-03-021-1/+1
| | | | LASSO_PROFILE_ERROR_MISSING_RESPONSE
* Core: add an helper method to build a SOAP response in a LassoProfile objectBenjamin Dauvergne2010-03-026-17/+67
| | | | | | | | | | | | | * lasso/id-ff/profile.{c,h}: add lasso_profile_add_soap_fault_response(char* code, char *string, GList *details). * lasso/id-wsf-2.0/profile.{c,h}: change signature of lasso_idwsf2_profile_init_soap_fault_response. * lasso/id-wsf-2.0/data_service.c: use new function instead of manually intializing soap faults * lasso/id-wsf-2.0/discovery.c: init a soap fault when parsed request is of an unknown type, return proper error.
* ID-WSF 2.0: add service type to response, parse response before using itBenjamin Dauvergne2010-03-021-1/+24
|
* Core: in xml_insure_namespace do not segfault if ns is NULLBenjamin Dauvergne2010-03-021-1/+1
|
* ID-WSF 2.0: in lasso_idwsf2_get_name_identifier, use ↵Benjamin Dauvergne2010-03-021-21/+15
| | | | lasso_saml2_assertion_decrypt_subject
* ID-WSF 2.0: in lasso_idwsf2_profile_check_security_mechanism, add common ↵Benjamin Dauvergne2010-03-021-23/+49
| | | | logic for SAML 2.0 secmech, check for presence of a server object,
* ID-WSF 2.0: fix MDAssociationQueryResponse handlingBenjamin Dauvergne2010-03-021-15/+25
| | | | | | | | * lasso/id-wsf-2.0/discovery.c: - in lasso_idwsf2_discovery_validate_request, use svcmdids to intialize response to MSAssociationQuery requests. - in lasso_idwsf2_discovery_process_response_msg, extract received svcmdids; use lasso_check_good_rc when needed.
* ID-WSF 2.0: change signature of lasso_idwsf2_discovery_add_identity_to_eprBenjamin Dauvergne2010-03-021-16/+16
| | | | | | | | | * lasso/id-wsf-2.0/discovery.c: - in lasso_idwsf2_discovery_add_identity_to_epr, receive an Epr instead of an EprMetadata node, and use lasso_wsa_endpoint_reference_add_security_token to add the assertion token instead of duplicating this logic. - in lasso_idwsf2_discovery_build_epr change the call site.
* ID-WSF 2.0: fix documentation of lasso_idwsf2_data_service_build_request_msgBenjamin Dauvergne2010-03-021-2/+3
|
* SAML 2.0: in lasso_saml2_assertion_get_issuer_provider, check type of server ↵Benjamin Dauvergne2010-03-021-0/+1
| | | | argument
* Core: add do/while(0) around block of goto_cleanup_with_rcBenjamin Dauvergne2010-03-021-2/+2
|
* Core: add PROFILE errors around assertion validationBenjamin Dauvergne2010-03-022-2/+44
| | | | | | | | * lasso/errors.c lasso/errors.h: - add errors concerning invalid assertion, assertion with invalid conditions, unknown issuers, or when the issuer is not a provider we marked as an IdP. - add error for missing sender id in an ID-WSF message.
* Core: add a level argument to lasso_xmlnode_to_string and ↵Benjamin Dauvergne2010-03-024-9/+28
| | | | _lasso_node_export_to_xml
* SAML 2.0: LassoSaml2ConditionAbstract does not match its element name ↵Benjamin Dauvergne2010-02-221-0/+3
| | | | | | | | | anymore, add a registry mapping * lasso/xml/saml-2.0/saml2_condition_abstract.c: last commit to this file changed the element name from ConditionAbstract to Condition so the XML parser cannot find the corresponding GObject class anymore.
* SAML 2.0: add more accessors for ConditionsBenjamin Dauvergne2010-02-222-20/+198
| | | | | | | | | | | | | | * lasso/saml-2.0/saml2_helper.{c,h}: distribute code from lasso_saml2_assertion_validate_conditions to lasso_saml2_assertion_validate_time_checks and lasso_saml2_assertion_validate_audience. add lasso_saml2_assertion_allows_proxying and lasso_saml2_assertion_allows_proxying_to, to respectively check for proxying of the current assertion, and for proxying to a specific provider (you must call both of them to test completely the proxying status of an assertion). * docs/reference/lasso/lasso-sections.txt: reference new functions into documentation.
* Add lasso_string_to_xsd_integer, to parse xsd:integer valuesBenjamin Dauvergne2010-02-222-0/+33
|
* SAML 2.0: fix bad name of Condition element, keep xmlNode as it is abstractBenjamin Dauvergne2010-02-221-1/+2
| | | | | | | | * lasso/xml/saml-2.0/saml2_condition_abstract.c: saml2:Condition is an element whose type is abstract, it must be used as an extension point helped by the xsi:type field. As the content is unknown before hand we must keep the original xmlNode for later analysis.
* ID-WSF 2.0: reorganize EPR minting, add a process_request method to disco ↵Benjamin Dauvergne2010-02-229-132/+312
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | service * data_service.c: remove dependency on discovery.h * discovery.{c,h}: - add a lasso_idwsf2_discovery_process_request_msg to extract request data before validate request (SvcMDID, SvcMD or RequestService). - store SvcMDID in a private field, add a setter for it. - SvcMDID is now used for building response to MDAssociationQuery and parsing request for MDQuery, MDDelete, MDAssociationAdd and MDAssociationDelete. * idwsf2_helper.{c,h}: - change security mechanism argument of lasso_wsa_endpoint_reference_add_security_token from a NULL terminated string array to a GList. * saml2_login.{c,h}: - add a lasso_server_create_assertion_as_idwsf2_security_token for minting assertion for ID-WSF 2.0 security, to be used in Discovery bootstap EPR creation and EPR minting for Discovery service Query responses. - add a lasso_saml2_assertion_get_discovery_bootstrap_epr, and rewirte lasso_login_idwsf2_get_discovery_bootstrap_epr to use it. - make lasso_login_idwsf2_add_discovery_bootstrap_epr accept a list of security mechanisms, not just one. * tests/idwsf2_tests.c: - adapt to new argument type of lasso_login_idwsf2_add_discovery_bootstrap_epr.
* Core: add new example to LassoLogout for asynchronous response handlingBenjamin Dauvergne2010-02-221-11/+56
|
* Support multiline error messages in build_strerror.pyBenjamin Dauvergne2010-02-222-9/+14
|
* SAML 2.0: add lasso_saml2_encrypted_element_server_decrypt and ↵Benjamin Dauvergne2010-02-222-0/+50
| | | | lasso_saml2_assertion_decrypt_subject
* Fix lasso_extract_gobject_from_listBenjamin Dauvergne2010-02-222-2/+13
|
* (no commit message)Mikael Ates2010-02-211-1/+1
|
* Documentation: add example to LassoLogout, fix bad markup in ↵Benjamin Dauvergne2010-02-172-2/+159
| | | | id-wsf-2.0/profile.c
* ID-WSF 2.0: also check sender match assertion in ↵Benjamin Dauvergne2010-02-171-0/+10
| | | | | | | | lasso_idwsf2_profile_check_security_mechanism * lasso/id-wsf-2.0/profile.c: for BEARER mechanism, also check that the SPNameQualifier of the Subject match the Sender of the request.
* ID-WSF 2.0: add lasso_idwsf2_discovery_get_svcmdids to public APIBenjamin Dauvergne2010-02-171-0/+1
|
generated by cgit (git 2.34.1) at 2025-09-27 00:50:11 +0000