summaryrefslogtreecommitdiffstats
path: root/lasso
Commit message (Collapse)AuthorAgeFilesLines
* saml-2.0/profile: fix leak of xmlSecKey when building signed query stringsBenjamin Dauvergne2014-06-081-3/+2
|
* id-ff/provider: fix leak of xmlSecKeyBenjamin Dauvergne2014-06-081-0/+3
|
* xml/samlp2_logout_request: fix leaks around session indexesBenjamin Dauvergne2014-06-082-2/+15
|
* server: fix leak of xmlSecKey objectsBenjamin Dauvergne2014-06-081-1/+0
|
* session: fix leak of _NidAndSessionIndex structuresBenjamin Dauvergne2014-06-081-0/+1
|
* saml-2.0/server: fix invalid memory accessBenjamin Dauvergne2014-06-071-10/+7
| | | | | GList must never be allocated through malloc as it internally managed using gslice. Always use Glib constructors and methods.
* login: complete document of lasso_login_process_authn_response_msg on ↵Benjamin Dauvergne2014-05-211-1/+32
| | | | expectable error codes
* xml/xml.c: fix liberal use of casting for the SNIPPET_INTEGER and ↵Benjamin Dauvergne2014-04-241-21/+34
| | | | | | | | SNIPPET_BOOLEAN case Some behaviour are also made more explicit like the optional if equals to -1 case for integer fields, and the optional if FALSE for boolean fields.
* lasso/xml/tools.c: fix reference to unitialized memoryBenjamin Dauvergne2014-04-241-1/+1
|
* fix: remove warning by not calling g_type_init() with glib > 2.36 as it's ↵Benjamin Dauvergne2014-03-251-0/+2
| | | | deprecated
* id-ff/providerprivate.h,id-ff/provider.h: make ↵Benjamin Dauvergne2013-12-182-2/+3
| | | | | | lasso_provider_verify_signature public API It's necessary for the crudeSAML SASL mechanism.
* id-ff/session.c: fix wrong variable reference in ↵Benjamin Dauvergne2013-12-081-1/+1
| | | | init_from_xml_nid_and_session_index
* Fix license boilerplatesSimo Sorce2013-12-03765-1530/+765
| | | | | | | Instad of referring to an old FSF address, point the reader to the FSF website where the latest licenses and addresses are published. Signed-off-by: Simo Sorce <simo@redhat.com>
* saml-2.0/provider: when looking for endpoints take a null role as meanning ↵Benjamin Dauvergne2013-10-111-6/+11
| | | | « take the first one »
* saml-2.0/profile: fix typo in commit 8de55Benjamin Dauvergne2013-10-101-1/+1
|
* saml-2.0/profile: add warning message when unable to build an artifact ↵Benjamin Dauvergne2013-10-101-0/+4
| | | | response message due to an unfound artifact resolution endpoint
* lasso/xml/tools.c: fix misuse of xmlURIUnescapeStringBenjamin Dauvergne2013-09-271-2/+10
| | | | | If the length argument is NULL, the full string is unescaped; the behaviour we expected is to return a 0 length string.
* id-ff/login.c: initialize role status of sp and idp in ↵Benjamin Dauvergne2013-09-271-1/+10
| | | | lasso_login_init_authn_request
* saml2/profile.c: add resolving of the endpoint index in artifactsBenjamin Dauvergne2013-09-083-8/+22
| | | | | | | | * lasso/saml-2.0/profile.c: add new argument role to lasso_saml20_profile_init_artifact_resolve() for looking up ArtifactResolutionService location; extract endpoint index from artifact and use it to resolve the endpoint location. * login.c: pass new argument ; force msg_url as it is preinitialized by lasso_saml20_profile_init_artifact_resolve()
* saml2/provider.c: add new function lasso_saml20_provider_get_endpoint_url() ↵Benjamin Dauvergne2013-09-082-0/+60
| | | | for retrieving endpoint locations using the new endpoints list
* errors.{c,h}: add new error LASSO_PROFILE_ERROR_ENDPOINT_INDEX_NOT_FOUND for ↵Benjamin Dauvergne2013-09-082-0/+9
| | | | reporting when a recevied artifact does match any declared endpoint
* saml2/profile: fix missing ArtifactResolutionService index in artifactsBenjamin Dauvergne2013-09-084-8/+42
|
* saml2/login: fix role of providers in process_authn_request() and ↵Benjamin Dauvergne2013-09-081-0/+9
| | | | | | idp_initiated_authn_request() It is necessary for endpoint resolution to know the role of providers.
* fix compilation errors on 64bits architecturesBenjamin Dauvergne2013-09-083-3/+3
| | | | | * sizeof(unsigned int) != sizeof(size_t) * INT_MAX != LONG_MAX
* fix warnings about unused but set variablesBenjamin Dauvergne2013-09-089-42/+13
|
* Merge remote-tracking branch 'origin/libxml2.9-compat'Benjamin Dauvergne2013-07-305-83/+34
|\
| * Rewrite all xmlNode serialization code to be compatible with libxml 2.9.0Benjamin Dauvergne2012-09-285-83/+34
| | | | | | | | | | | | | | | | | | | | Libxml stopped exposing the internal of the xmlOutputBuffer structure; it was replace by proper use of the API and of the xmlBuffer structure. There could be regression for older version of libxml as some functions appeared in recent version of libxml; but the reference API document does not give any introduction date for functions so it's hard to be sure.
* | saml-2.0: fix missing signature on logout responsesBenjamin Dauvergne2013-03-201-0/+3
| |
* | xml-saml-2.0: ManageNameIDRequest must have a NameIDBenjamin Dauvergne2013-01-251-0/+18
| |
* | xml-saml-2.0: LogoutRequest must have a NameIDBenjamin Dauvergne2013-01-251-0/+8
| |
* | xml: really enforce elements cardinality when parsing messagesBenjamin Dauvergne2013-01-252-35/+78
| | | | | | | | | | | | | | | | - add a new SNIPPET_MANDATORY: we could only indicate 0-1 and 0-* cardinalities, now we can also indicate 1-1 and 1-* cardinalities. - repect cadinalities when parsing an xmlNode tree into a LassoNode tree.
* | xml-saml-2.0: add missing namespace declaration for the ↵Benjamin Dauvergne2013-01-251-1/+2
| | | | | | | | KeyInfoSujectConfirmationData sub-type
* | fix memory leak in lasso_node_impl_init_from_xml: release the class_listBenjamin Dauvergne2013-01-251-6/+12
| |
* | utils: add a lasso_release_slist macroBenjamin Dauvergne2013-01-251-1/+1
| |
* | add a lasso_release_slistBenjamin Dauvergne2013-01-251-0/+3
| |
* | fix potential segfault in lasso_node_impl_init_from_xmlBenjamin Dauvergne2013-01-251-8/+10
|/
* fix segfault in saml-2.0/provider.c:load_endpoint_type2Benjamin Dauvergne2012-09-261-1/+1
| | | | Thanks to Hiromitsu Fujita for the patch. fixes #1582.
* Fix compilation on solarisBenjamin Dauvergne2012-06-211-0/+1
| | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516
* fix SIGSEGV when loading metadata filesBenjamin Dauvergne2012-06-211-1/+2
| | | | | | Thanks Wojciech Lichota for the patch. Fixes #1516
* [xml] fix wrong forward declarationBenjamin Dauvergne2012-05-051-2/+2
|
* [xml] add missing includeBenjamin Dauvergne2012-05-051-0/+2
|
* [xml] fix typosBenjamin Dauvergne2012-05-052-5/+5
|
* [lasso] add missing GObjectIntrospection annotations to ↵Benjamin Dauvergne2012-05-051-1/+1
| | | | lasso_node_get_original_xmlnode
* [lasso] add missing GObjectIntrospection annotations to ↵Benjamin Dauvergne2012-05-051-1/+1
| | | | lasso_misc_text_node_get_xml_content
* Merge branch 'release-2.4.0'Benjamin Dauvergne2012-05-058-75/+402
|\
| * [saml2] modify behaviour of lasso_saml2_assertion_add_attribute_with_nodeBenjamin Dauvergne2012-04-061-2/+10
| | | | | | | | If an AttributeStatement already exists, we add the new attribute to it.
| * [core] including glib headers directly is deprecated, we must only use ↵Benjamin Dauvergne2012-03-252-2/+2
| | | | | | | | <glib.h> now
| * [key] add methods to send message using SAML 2.0 redirect and post bindingsBenjamin Dauvergne2012-03-176-71/+368
| |
| * [saml2] fix handling of SingleSignOnServer in ↵Benjamin Dauvergne2012-03-171-2/+24
| | | | | | | | | | | | | | | | | | lasso_saml20_provider_get_first_http_method When checking if a synchronous http method can be used for sending a request to the SingleSignOnService we must check if the response can received by the AssertionConsumerService with a synchronous binding not the SingleSignOnService.
* | fix wrong EXTRA_DIST in lasso/xml/dsig/Makefile.amBenjamin Dauvergne2012-04-272-2/+36
| |