entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity
4,989 Commits 7 Branches 40 Tags 14 MiB
Commit Graph

4989 Commits

Author SHA1 Message Date
Benjamin Dauvergne 0bd4c25a24 Merge branch 'hotfixes-2.3.3' into release 2010-10-01 19:13:31 +02:00
Benjamin Dauvergne 19cb0bf52b [Website] add news about 2.3.3 and update doap and main page 2010-10-01 19:11:32 +02:00
Benjamin Dauvergne a33c76aaf1 [Release] add release notes 2010-10-01 19:06:33 +02:00
Benjamin Dauvergne 86f0f6b6f2 [SAMLv2] restore setting of SubjectConfirmationData->NotOnOrAfter 
This was wrongly removed by me in commit
9d22f29e55.

This is the responsability of the caller to adjust value on the
Conditions and SubjectConfirmationData independently after.
 2010-10-01 17:44:40 +02:00
Benjamin Dauvergne d9bc35e01a [Binding java] replace use of strcmp by g_strcmp0 2010-10-01 15:29:42 +02:00
Benjamin Dauvergne 0c82592a99 [Tests] add annotation to remove compiler warnings 2010-10-01 15:29:42 +02:00
Benjamin Dauvergne 462c9a1cd0 [Core] replace all use of g_strcmp0 by lasso_strisequal and lasso_strisnotequal 
Too much human errors with strcmp kind of functions. Also change name os
lasso_is_empty_string to lasso_strisempty.
 2010-10-01 15:29:38 +02:00
Benjamin Dauvergne b5fcbc6455 [Core] add helper API for string comparaison 
It should remove most errors when comparing strings.
 2010-10-01 15:13:49 +02:00
Benjamin Dauvergne fe63f7a517 [SAMLv2] add missing compare to 0 introduced in 7386dc8189 
I hate strcmp.
 2010-10-01 12:22:17 +02:00
Benjamin Dauvergne c02711bf79 [Bindings] change prefix for ignoring soap_binding related files 2010-09-30 11:21:09 +02:00
Benjamin Dauvergne 4c3af26a58 [SAMLv2] also initialize Destination for response messages 
asynchronous bindings needs Destination attribute even for response
messages.
 2010-09-30 10:58:50 +02:00
Benjamin Dauvergne 7386dc8189 [SAMLv2] when NidPolicy->Format is NULL or unspecified, return transient 
Add more default cases.
 2010-09-30 10:58:18 +02:00
Benjamin Dauvergne b20552c417 [Tests] update perfs to test each phase of WebSSO separately and use SAMLv2 
I removed signature at the message level for the response, it should
simulate apporiately the artifact binding with SSL transport.
 2010-09-29 18:27:19 +02:00
Benjamin Dauvergne 5f7a08acb3 [Bindings] restore presence of SOAP nodes 
The node to exclude when ID-WSF is disactivated was soap_binding_ ones.
 2010-09-29 15:56:59 +02:00
Benjamin Dauvergne cd7b3e92c5 [Core] fix break of lasso_profile_get_request_type_from_soap_msg from commit b9d535625 
ManageNameIDRequest is not an ID-WSF kind of request.
 2010-09-29 00:10:09 +02:00
Benjamin Dauvergne 4a970453de [Core] add missing annotation to lasso_*_dump functions 
The string returned by these functions is newly allocated and must be
freed by the caller.
 2010-09-27 16:18:57 +02:00
Benjamin Dauvergne b4e04a0716 [ID-WSFv1] fix other misuses of the macro lasso_foreach 2010-09-27 16:18:30 +02:00
Benjamin Dauvergne 6cc9ae7e32 [SAMLv2] fix wrong order in use of macro lasso_foreach 
The first argument must be the iterator, the second is the iterable.
Also add a non-regression test with Googleapps metadata and and a
typical authn request.
 2010-09-27 16:17:07 +02:00
Benjamin Dauvergne 5bcbb0e55f [SAMLv2] fix early release of the request when using idp_initiaed login 2010-09-17 18:07:39 +02:00
Benjamin Dauvergne 1ffece0e57 [SAMLv2] fix memleak of request in lasso_name_id_management_process_request_msg 2010-09-17 18:01:31 +02:00
Benjamin Dauvergne 6adc8c3e54 [Tests] remove a valgrind suppression on g_log_default_handler 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 88623c29f3 [Tests] add valgrind targets in the Makefile: leakcheck, leakcheck-reachable and massif 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 19aad7629a [SAMLv2] fix memleak of request in lasso_saml20_login_process_authn_request_msg 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 667f846085 [Core] fix leak of provider->private_data->endpoints 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne d2adc740a2 [Tests] fix leak of content in test01_server_new 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 87c3f63dd0 [Tests] fix leak of idpLogoutContext in test04_sso_then_slo_soap 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 69f46ad974 [Core] fix leak of provider->private_data->endpoints 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 73949289ee [XML] fix memleak in lasso_node_export_to_soap 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 3631ad59a9 [XML] fix memleak of xmlSecKeyMngr when loading a key from a KeyInfo node 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne fdd401cea7 [XML] fix memleak in get_xmlNode for LassoSamlp2LogoutRequest 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 0b8bec9b78 [XML] fix memleak in get_xmlNode for LassoSamlp2Response 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 56d81aa6e7 [SAMLv2] add missing stack variable initialization 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 1c0dd4b014 [SAMLv2] fix unused variable warning 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 6eeebd0304 [SAMLv2] in profile.c fix uncovered enumeration value in switch 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne a02645ba37 [XML] fix unused variable warnings 2010-09-17 17:02:40 +02:00
Benjamin Dauvergne 17cf81152a [XML] fix mem leak whene releasing CustomElement structures 2010-09-17 17:02:39 +02:00
Benjamin Dauvergne 92b9eaa2fd [Tests] fix mem leaks 2010-09-17 17:02:39 +02:00
Benjamin Dauvergne 8b0de80e4c [SAMLv2] fix mem leaks 2010-09-17 17:02:35 +02:00
Benjamin Dauvergne 280ee28202 [SAMLv2 NID management] report signature error in response, do not check response signature if forbidden 
- build_response_msg will report signature error in response status
   code when called without an initialized response (without a call to
   validate_request)
 - process_response_msg now use
   lasso_saml20_profile_check_signature_status to check the signature
   status only if permitted.
 2010-09-10 15:37:41 +02:00
Benjamin Dauvergne d7c56d7c20 [SAMLv2] move check for signature status to lasso_saml20_build_response_msg 
And also handle the signature verification hint. If process_msg fails,
you must just call build_response_msg directly.

Only check the signature on the response if asked, most applications
should not care.
 2010-09-10 15:36:56 +02:00
Benjamin Dauvergne 511dd3da9e [configure.ac] increment release version and libtool version info 2010-09-09 16:29:46 +02:00
Benjamin Dauvergne 51d5d4d3e3 [SAMLv2] apply the LassoProfileVerifySignatureHint when processing requests 
The check was missing for processing of logout requests, name id
management request and assertion query responses.

A new internal function lasso_saml20_profile_check_signature_status is
added.
 2010-09-09 16:20:17 +02:00
Benjamin Dauvergne b9d5356259 [ID-WSFv1&ID-WSFv2] separate better strings for ID-WSF from other strings 
Code in core source file which depend upon ID-WSF symbols have been
conditionalized, and each id-wsf source file now include directly its
need string header.
 2010-09-09 01:09:28 +02:00
Benjamin Dauvergne 8082428d80 Merge branches 'master' and 'release' of bdauvergne@xen3.lycope.priv:/var/git/lasso into release 2010-09-08 12:25:13 +02:00
Frédéric Péters c838dea464 News entry for 2.3.1 & 2.3.2 (combined) 2010-09-08 11:35:56 +02:00
Benjamin Dauvergne 817ab34e95 Merge branch 'hotfixes-2.3.2' into develop 2010-09-07 19:27:46 +02:00
Benjamin Dauvergne 8e8afcbd35 Merge branch 'hotfixes-2.3.2' 2010-09-07 19:27:42 +02:00
Benjamin Dauvergne 5ef593cfda Increment revision in version 2010-09-07 19:10:48 +02:00
Benjamin Dauvergne ba2705bbd7 Update files for release 2.3.2 2010-09-07 19:03:21 +02:00
Benjamin Dauvergne fb23db3ca6 Fix lasso soname change 
If new interfaces are added, first and last number must be incremented.
As new enumeration value have been added, this is the case.
 2010-09-07 19:02:46 +02:00