summaryrefslogtreecommitdiffstats
path: root/lasso
Commit message (Collapse)AuthorAgeFilesLines
...
* Core: in xml/private.h, add new field to LassoNodeClassData for private_key ↵Benjamin Dauvergne2010-01-121-0/+2
| | | | and certificate handling
* Core: in provider.h, add LASSO_PROVIDER_ROLE_BOTHBenjamin Dauvergne2010-01-121-3/+5
|
* Core: in profile.c, make lasso_profile_get_nameIdentifier work for transient ↵Benjamin Dauvergne2010-01-121-159/+129
| | | | | | | | | | federations * lasso/id-ff/profile.c: if no LassoIdentity is accessible try to get a name identifier through the assertion in the LassoSession object. This allows the logout profile to work without an identity object (which is normal since logout does not modify the federation status).
* Core: in provider.h, add new SAML 2.0 HTTP-Method, PAOSBenjamin Dauvergne2010-01-121-0/+2
|
* SAML 2.0: add new function to factorize adding signature to a messageBenjamin Dauvergne2010-01-122-0/+52
|
* Fix mitm attack using the AssertionConsumerURL property on requestsBenjamin Dauvergne2010-01-123-2/+60
| | | | | | | * lasso/saml-2.0/login.c: check that the URL is know before using it * lasso/saml-2.0/provider.c lasso/saml-2.0/providerprivate.h: add a function to check that an URL corresponds to a know AssertionConsumer of the given provider.
* ID-WSF 2.0: fix in documentationBenjamin Dauvergne2010-01-121-2/+2
|
* XML: add element type annotation to all GList fieldsBenjamin Dauvergne2010-01-0484-116/+116
|
* XML: move SOAP API to its own sub directoryBenjamin Dauvergne2010-01-0428-59/+104
|
* ID-WSF 2.0: in profile.{c,h}, discovery.{c,h}, data_service.{c,h}, overhaul ↵Benjamin Dauvergne2010-01-046-1751/+2361
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | all profiles. * lasso/id-wsf-2.0/profile.c lasso/id-wsf-2.0/profile.h: - lasso_idwsf2_profile_get_name_identifier returns the NameID found in an assertion used as a WS-Security token when security mechanism Bearer or SAML are used. - complete the function lasso_id_wsf2_profile_build_soap_envelope with construction of the Sender element which is used to transmit the providerID of the message sender by the SOAP binding ID-WSF 2.0 specification. - remove useless instance_init function in profile object - reset some profile fields in process_soap_request_msg (response, body, nameIdentifier). use lasso_saml20_profile_name_identifier_decryption for handling NameID from WS-Security mechanism assertion. - add private_data - change signature of lasso_idwsf2_profile_init_soap_request to use and EPR and a security mechanism specifier when building the SOAP request. - change signature of lasso_idwsf2_profile_process_soap_request to verify security_mech_id of received messages. * docs/reference/lasso/lasso-sections.txt: add the function to the documentation. * lasso/id-wsf-2.0/discovery.{c,h}: - use utils.h macros instead of g_return_val_if_fail because it removes useless warning, since it returns an error code. release acquired resources. - in lasso_idwsf2_discovery_metadata_register_self, return error code instead of identifier string for the new service, use an out parmeter to return the identifier, use utils.h macros. - in lasso_idwsf2_discovery_init_metadata_register, use utils.h macros, check return code of lasso_idwsf2_profile_init_soap_request. - change signature of lasso_idwsf2_discovery_init_metadata_register to support security_mech_id, try to get URL from an existing Discovery service EPR (from Session object). - change signature of lasso_idwsf2_discovery_process_metadata_register_msg, lasso_idwsf2_discovery_init_metadata_association_add, lasso_idwsf2_discovery_process_metadata_association_add_msg, lasso_idwsf2_discovery_init_query, lasso_idwsf2_discovery_process_query_msg, to support security mechanism. - improve lasso_idwsf2_discovery_build_query_response_eprs. - add lasso_idwsf2_discovery_get_nth_data_service to acces returned services. * lasso/id-wsf-2.0/data_service.{c,h}: - redo all the API
* ID-WSF 2.0: in session.c, fix memory handling errorsBenjamin Dauvergne2010-01-041-4/+14
|
* ID-WSF 2.0&ID-WSF: in profile.c, wsf_profile.c, errors.c, errors.h, and in ↵Benjamin Dauvergne2010-01-044-6/+6
| | | | lasso-sections.txt change LASSO_SOAP_FAULT_REDIRECT_REQUEST to LASSO_SOAP_ERROR_REDIRECT_REQUEST_FAULT
* ID-WSF 2.0 Errors: in errors.{c,h}, add new errors code for ID-WSF 2.0Benjamin Dauvergne2010-01-042-3/+139
| | | | | | - add LASSO_DST_ERROR_EMPTY_REQUEST - add LASSO_WSF_PROFILE_ERROR_SECURITY_MECHANISM_CHECK_FAILED - add new errors codes for generic profiles and disco service
* ID-WSF 2.0 XML: in strings.h, add identifiers from ID-WSF 2.0Benjamin Dauvergne2010-01-041-30/+757
| | | | | | | | | | | | standards - add status code for ID-WSF 2.0 DST - add token usage identifiers - conform security mechanism identifiers to ID-WSF 2.0 Liberty Sech Mech specification - add Discovery Service status codes - add Soap Binding status codes - add disco result type and user interaction hint strings
* ID-WSF 2.0 XML: in sec_token.c, remove extra SNIPPET_ANYBenjamin Dauvergne2010-01-041-1/+1
|
* ID-WSF 2.0 XML: in util_response.{c,h}, add helper functions to ↵Benjamin Dauvergne2010-01-042-0/+59
| | | | idwsf2_util_status
* ID-WSF 2.0: in server.c, change annotation of ↵Benjamin Dauvergne2010-01-041-1/+1
| | | | lasso_server_get_svc_metadatas_with_id_and_type.
* ID-WSF 2.0: in saml2_login.c, change APIBenjamin Dauvergne2010-01-042-145/+135
| | | | | | | | | | | | * lasso/id-wsf-2.0/saml2_login.c: - change private lasso_saml20_login_assertion_add_discovery to public lasso_login_idwsf2_add_discovery_bootstrap_epr. - remove lasso_saml20_login_copy_assertion_epr, add lasso_login_idwsf2_get_discovery_bootstrap_epr. * docs/reference/lasso/lasso-docs.sgml: - add sections id_wsf_2_0_login * docs/reference/lasso/lasso-sections.txt: - add new functions to section id_wsf_2_0_login
* ID-WSF 2.0: in idwsf2_helper.c, add new functions, fix old thingsBenjamin Dauvergne2010-01-042-21/+98
| | | | | - add lasso_wsa_endpoint_reference_get_service, lasso_wsa_endpoint_reference_associate_service_type_uri,
* ID-WSF 2.0: create idwsf2_helper.{c,h}, new module for manipulating EPR elementsBenjamin Dauvergne2010-01-043-2/+389
| | | | | | | | | | | | | | | | * lasso/id-wsf-2.0/idwsf2_helper.c lasso/id-wsf-2.0/idwsf2_helper.h: add new functions lasso_wsa_endpoint_reference_get_idwsf2_service_type, lasso_wsa_endpoint_reference_get_idwsf2_provider_id, lasso_wsa_endpoint_reference_get_idwsf2_security_context_for_security_mechanism, lasso_wsa_endpoint_reference_get_token_by_usage, lasso_wsa_endpoint_reference_get_security_token,lasso_wsa_endpoint_reference_get_target_identity_token, lasso_wsa_endpoint_reference_new_for_idwsf2_service, and lasso_wsa_endpoint_reference_add_security_token. * lasso/id-wsf-2.0/idwsf2_helper.h: declare new functions. * lasso/id-wsf-2.0/Makefile.am: add new files to source list
* ID-WSF 2.0: in soap_binding.{c,h}, add new functionsBenjamin Dauvergne2010-01-042-11/+191
|
* ID-WSF 2.0: add files soap_binding.c, soap_binding.hBenjamin Dauvergne2010-01-043-2/+288
| | | | | | | | | | | | | | | | | | | | | * lasso/id-wsf-2.0/Makefile.am - reference new source files in Makefile.am * lasso/id-wsf-2.0/soap_binding.c * lasso/id-wsf-2.0/soap_binding.h: - add extraction functions lasso_soap_envelope_sb2_get_provider_id, lasso_soap_envelope_sb2_get_redirect_request_url, lasso_soap_envelope_sb2_get_target_identity_header, lasso_soap_envelope_add_action and lasso_soap_envelope_get_action. - add SOAP security headers accessors - add lasso_soap_envelope_get_saml2_security_token which simplify retrieving a SAML 2.0 assertion used as a WS-Security token. complete documentation of other functions. * docs/reference/lasso/lasso-sections.txt: - reference the new functions in a new section soap_binding2 * docs/reference/lasso/lasso-docs.sgml: - add new section soap_binding2 ID-WSF 2.0: in soap_binding.{c,h}: add function
* ID-WSF: in id_ff_extensions.c, add SECTION gtk-doc declarationBenjamin Dauvergne2010-01-041-0/+1
|
* ID-WSF: in interaction_profile_service.{c,h}, make initialization of a ↵Benjamin Dauvergne2010-01-042-2/+2
| | | | redirect request, part of LassoWsfProfile methods.
* ID-WSF: in discovery.c:lasso_discovery_init_resource_offering, add doc ↵Benjamin Dauvergne2010-01-041-3/+4
| | | | annotations, use assignment macros to set output argument
* ID-WSF: in discovery.c, update documentation annotationsBenjamin Dauvergne2010-01-041-18/+17
| | | | | | | | | * lasso/id-wsf/discovery.c: - add annotations to lasso_discovery_init_query, lasso_discovery_init_modify, lasso_discovery_process_request_msg. - initialize response in lasso_discovery_process_query_mesg and lasso_discovery_process_modify_msg, so that modifications of the response can be done between _process_ and _build_ calls.
* ID-WSF: in data_service.c:lasso_data_service_init_query check absent ↵Benjamin Dauvergne2010-01-042-210/+339
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | resource offering, support security_mech_id argument * lasso/id-wsf/data_service.c lasso/id-wsf/data_service.h: - in lasso_data_service_apply_modifications, dst_modification initialization is missing. - remove lasso_data_service_get_redirect_request_url - change LASSO_DATA_SERVICE_CANNOT_ADD_ITEM to LASSO_DATA_SERVICE_ERROR_CANNOT_ADD_ITEM - in lasso_data_service_init_query, complete documentation, fix mem leak - factorize code between lasso_data_service_build_modify_response_msg and lasso_data_service_build_query_response_msg, create lasso_data_service_build_response_msg - in lasso_data_service_get_answer, add out annotation to output parameter - simplify API, simplify code path for query and modification processing - add lasso_data_service_process_request_msg, lasso_data_service_build_modify_response_msg, lasso_data_service_validate_request. - remove lasso_data_service_process_query_msg and lasso_data_service_process_modify_msg from public API. - in lasso_data_service_process_query_msg and lasso_data_service_process_modify_msg add arg checks, make them static and move preprocessing of the request in lasso_data_service_process_request_msg. - in lasso_data_service_get_answer, fix request/response mismatch. - add accessors lasso_data_service_set_resource_data and lasso_data_service_get_resource_data. - add securit_mech_id arg to data_service_init_modify, export resource_data accessor methods - remove lasso_data_service_get_redirect_request_url - fix missing intializations and leaks
* ID-WSF: in wsf_profile.c, fix mem leaksBenjamin Dauvergne2010-01-041-6/+9
|
* ID-WSF XML: in dst_modification.c, add SNIPPET_BOOLEAN to overrideAllowed ↵Benjamin Dauvergne2010-01-041-1/+1
| | | | attribute snippet
* ID-WSF XML: in dst_modify.{c,h}, remove extra argument to the constructor of ↵Benjamin Dauvergne2010-01-042-10/+2
| | | | | | | | LassoDstModify * lasso/xml/dst_modify.c: * lasso/xml/dst_modify.h: remove parameters of the default constructor.
* WS XML: change signature of lasso_wsa_attributed_uri_new_with_string, add ↵Benjamin Dauvergne2010-01-043-2/+8
| | | | | | | | | | | mappings * wsa_attributed_uri.c: - constify first argument of lasso_wsa_attributed_uri_new_with_string. - add add direct mappings from wsa:Action,wsa:To to LassoWsAddrAttributedURI and from wsa:From,wsa:ReplyTo,wsa:FaultTo to LassoWsAddrEndpointReference
* SAML 2.0: in login.c, use lasso_server_saml2_assertion_setup_signatureBenjamin Dauvergne2010-01-041-8/+2
|
* XML: in private.h, remove duplicate declaration of lasso_xml_parse_memoryBenjamin Dauvergne2010-01-041-2/+0
|
* ID-FF XML: in lib_assertion.c, add registry mapping for lib:AssertionTypeBenjamin Dauvergne2010-01-041-0/+3
| | | | | | * xml/lib_assertion.c: this object is really a container for lib:AssertionType, so register it.
* Core: in provider.c, add lasso_provider_verify_single_node_signatureBenjamin Dauvergne2010-01-042-0/+31
| | | | | | | * lasso/id-ff/provider.c lasso/id-ff/provider.h: add a new function to check an enclosed single signature on a LassoNode, given that the LassoNode retained its original xml node content.
* SAML 2.0: in login.c, fix memleaksBenjamin Dauvergne2010-01-041-21/+27
| | | | | * lasso/saml-2.0/login.c: return value from lasso_provider_get_sp_name_qualifier must be freed.
* SAML 2.0: in login.c, remove discovery bootstrap handlingBenjamin Dauvergne2010-01-041-12/+0
|
* Core Login: in login.c, add assertion accessorBenjamin Dauvergne2010-01-043-1/+25
| | | | | | | | | | | * docs/reference/lasso/lasso-sections.txt: declare new function * lasso/id-ff/login.c lasso/id-ff/login.h: add new function lasso_login_get_assertion. * lasso/saml-2.0/login.c: store created assertions * lasso/id-ff/login.h: make assertion field private for bindings.
* SAML 2.0: in saml2_helper.c, add new methods to manipulate SAML2 assertionsBenjamin Dauvergne2010-01-043-1/+811
| | | | | | | | | | | | * lasso/saml-2.0/saml2_helper.c lasso/saml-2.0/saml2_helper.h: - add lasso_server_saml2_assertion_setup_signature, to help in defining signature upon saml2:Assertion nodes. - add new symbols LASSO_DURATION_MINUTE, LASSO_DURATION_HOUR, LASSO_DURATION_DAY, LASSO_DURATION_WEEK. - add method lasso_saml2_assertion_add_attribute_with_node * docs/reference/lasso/lasso-sections.txt: declare new functions in saml2_helper section.
* SAML 2.0 XML: map EncryptedID, EncryptedAssertion, EncryptedAttribute and ↵Benjamin Dauvergne2010-01-041-0/+9
| | | | | | | | | NewEncryptedID element to saml2:EncryptedElement * lasso/xml/saml-2.0/saml2_encrypted_element.c: add registry mapping from EncryptedID, EncryptedAssertion, EncryptedAttribute and NewEncryptedID element to saml2:EncryptedElement
* SAML 2.0 XML: in strings.h, add the identifier for the holder of key subject ↵Benjamin Dauvergne2010-01-041-0/+1
| | | | confirmation method
* SAML 2.0: in provider.c, add node encryption function and reference it in docBenjamin Dauvergne2010-01-043-1/+69
| | | | | | | | | | | * lasso/saml-2.0/Makefile.am: add new header provider.h * lasso/saml-2.0/provider.c lasso/saml-2.0/provider.h: add new function lasso_provider_saml2_node_encrypt to encrypt nodes and encapslutate the XML Enc datas in a LassoSaml2EncryptedElement node. * docs/reference/lasso/lasso-sections.txt: add function to saml2_utils section
* WS XML: add forgotten include file to wsa_attributed_uri.c and ↵Benjamin Dauvergne2010-01-042-0/+2
| | | | wsa_endpoint_reference.c
* WS Errors: in errors.h errors.c, add new error section for WS-Security handlingBenjamin Dauvergne2010-01-042-0/+5
|
* Core: in server.c, change signature of lasso_server_get_provider, add ↵Benjamin Dauvergne2010-01-042-3/+3
| | | | | | | | anottations on return value * lasso/id-ff/server.h lasso/id-ff/server.c: - constify first argument of lasso_server_get_provider - add annotation about caller owned return value
* Core: in tools.c, complete documentation of lasso_verify_signatureBenjamin Dauvergne2010-01-041-2/+10
|
* Core: in provider.c, add accessors for encryption informationsBenjamin Dauvergne2010-01-042-2/+41
| | | | | | | * lasso/id-ff/provider.c: add getters for encryption_sym_key_type and encryption_public_key. * lasso/id-ff/providerprivate.h: declare new accessors.
* Core XML: in xml.{c,h}, add new function lasso_node_get_name to get the ↵Benjamin Dauvergne2010-01-042-0/+27
| | | | element name for an object
* Core XML: make first argument of lasso_misc_text_node_new_with_string constBenjamin Dauvergne2010-01-042-2/+2
| | | | | | * lasso/xml/misc_text_node.h lasso/xml/misc_text_node.c: change signature of lasso_misc_text_node_new_with_string, string argument is const.
* Core XML: in xml/tools.c, add conversion method from iso8601 to time_tBenjamin Dauvergne2010-01-042-0/+25
| | | | | | | * lasso/xml/tools.c: add function lasso_iso_8601_gmt_to_time_t * lasso/xml/private.h: declare new function.
generated by cgit (git 2.34.1) at 2025-09-27 17:52:35 +0000