entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity
5,013 Commits 7 Branches 40 Tags 14 MiB
Commit Graph

5013 Commits

Author SHA1 Message Date
Benjamin Dauvergne 11434956dd Merge branch 'hotfixes-2.3.4' into release 2010-10-13 14:18:06 +02:00
Benjamin Dauvergne 48a7639e58 Update doap and news file 2010-10-13 12:23:21 +02:00
Benjamin Dauvergne 6003310f40 Update NEWS file 2010-10-13 12:06:02 +02:00
Benjamin Dauvergne 3ba1b2b9ba [tests integration] adapt to string change in lcs/qommon/saml2.ptl 2010-10-11 18:30:53 +02:00
Benjamin Dauvergne 7d90d5e26a [SAMLv2] delete an unused local variable 2010-10-11 09:58:16 +02:00
Benjamin Dauvergne c36d6a90dd [SAMLv2] user server->signature_method when signing request and response 2010-10-09 17:55:31 +02:00
Benjamin Dauvergne 6a8552a04d [tests] add non regression test on assertion consumer endpoints ordering 2010-10-09 17:53:00 +02:00
Benjamin Dauvergne 4ebb7067a0 [core] check type of first argument of lasso_provider_get_assertion_consumer_url 2010-10-09 15:51:23 +02:00
Benjamin Dauvergne 15781d1960 fix pardus capitalisation in NEWS file 2010-10-08 19:18:30 +02:00
Benjamin Dauvergne 0325ce0867 Update release notes and website for release 2.3.4 2010-10-08 18:34:19 +02:00
Benjamin Dauvergne 758fe88dad [xml] fix waring on use of strndup on pardus 2010-10-08 14:10:26 +02:00
Jérôme Schneider 270f1743f0 Add missing include <errno.h> 2010-10-08 14:10:02 +02:00
Benjamin Dauvergne 3872f17fcd [SAMLv2] handle unknown provider in artifact resolve, and also alow to ignore signature validation 
In lasso_saml20_profile_process_artifact_resolve, we know take a short
path with an error when the remote provider is unknown and we also
respect the lasso_profile_get_signature_verify_hint() when checking the
signature on the artifact resolve message.
 2010-10-07 18:48:28 +02:00
Benjamin Dauvergne 4bf2a6c0c0 [SAMLv2] fix bad double free bug in lasso_saml20_provider_get_assertion_consumer_service_url_by_binding 2010-10-07 18:39:06 +02:00
Benjamin Dauvergne 6b2a21d116 [core] adapt lasso_provider_get_assertion_consumer_service_url for SAMLv2 2010-10-07 18:38:21 +02:00
Benjamin Dauvergne 3e87282db3 [docs lasso-book] add figures to the tarball 2010-10-06 18:43:57 +02:00
Benjamin Dauvergne 21d61b5ba6 [configure.ac] increment version and libtool version info 2010-10-06 17:02:18 +02:00
Benjamin Dauvergne 5d56e4558e [ID-FFv1.2] in lasso_login_process_authn_request_msg() adopt simpler behaviour for checking signatures 
There is two sources of advice for signature checking:
AuthnRequestsSigned attribute in service provider metadata files and
value of lasso_profile_get_signature_verify_hint().

If lasso_profile_get_signature_verify_hint() forbid to check signature,
we do not check.
If the SP advise to check signature, we check.
If lasso_profile_get_signature_verify_hint() forces to check signature,
we do not check.
In all other cases we only check if a signature is present, i.e. we
ignore the error LASSO_DS_ERROR_SIGNATURE_NOT_FOUND.
 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne 58a3868361 [ID-FFv1.2] make lasso_login_process_authn_request_msg() return LASSO_PROFILE_ERROR_INVALID_MSG if received request is not a lib:AuthnRequest 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne 7a27400a87 [SAMLv2] adopt same behaviour as ID-FFv1.2 for invalid AuthnRequest 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne 6be8d9cfa8 [SAMLv2&ID-FFv1.2] improve documentation of lasso_login_process_authn_request_msg 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne 06c2ec9d61 [SAMLv2] fix ordering of endpoints 
Ordering by binding is wrong, first order by isDefault (as stated in
saml-metadata-2.0.pdf) then by index.
 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne 3d1d90ee31 [Core] change isdefault type in EndpointType structure 
As integer we can represent the three value of isdefault:
- true
- false
- attribute absent
 2010-10-06 17:00:52 +02:00
Benjamin Dauvergne e2611e16d6 [docs] update copyright years 2010-10-06 17:00:18 +02:00
Benjamin Dauvergne 0bd4c25a24 Merge branch 'hotfixes-2.3.3' into release 2010-10-01 19:13:31 +02:00
Benjamin Dauvergne 19cb0bf52b [Website] add news about 2.3.3 and update doap and main page 2010-10-01 19:11:32 +02:00
Benjamin Dauvergne a33c76aaf1 [Release] add release notes 2010-10-01 19:06:33 +02:00
Benjamin Dauvergne 86f0f6b6f2 [SAMLv2] restore setting of SubjectConfirmationData->NotOnOrAfter 
This was wrongly removed by me in commit
9d22f29e55.

This is the responsability of the caller to adjust value on the
Conditions and SubjectConfirmationData independently after.
 2010-10-01 17:44:40 +02:00
Benjamin Dauvergne d9bc35e01a [Binding java] replace use of strcmp by g_strcmp0 2010-10-01 15:29:42 +02:00
Benjamin Dauvergne 0c82592a99 [Tests] add annotation to remove compiler warnings 2010-10-01 15:29:42 +02:00
Benjamin Dauvergne 462c9a1cd0 [Core] replace all use of g_strcmp0 by lasso_strisequal and lasso_strisnotequal 
Too much human errors with strcmp kind of functions. Also change name os
lasso_is_empty_string to lasso_strisempty.
 2010-10-01 15:29:38 +02:00
Benjamin Dauvergne b5fcbc6455 [Core] add helper API for string comparaison 
It should remove most errors when comparing strings.
 2010-10-01 15:13:49 +02:00
Benjamin Dauvergne fe63f7a517 [SAMLv2] add missing compare to 0 introduced in 7386dc8189 
I hate strcmp.
 2010-10-01 12:22:17 +02:00
Benjamin Dauvergne c02711bf79 [Bindings] change prefix for ignoring soap_binding related files 2010-09-30 11:21:09 +02:00
Benjamin Dauvergne 4c3af26a58 [SAMLv2] also initialize Destination for response messages 
asynchronous bindings needs Destination attribute even for response
messages.
 2010-09-30 10:58:50 +02:00
Benjamin Dauvergne 7386dc8189 [SAMLv2] when NidPolicy->Format is NULL or unspecified, return transient 
Add more default cases.
 2010-09-30 10:58:18 +02:00
Benjamin Dauvergne b20552c417 [Tests] update perfs to test each phase of WebSSO separately and use SAMLv2 
I removed signature at the message level for the response, it should
simulate apporiately the artifact binding with SSL transport.
 2010-09-29 18:27:19 +02:00
Benjamin Dauvergne 5f7a08acb3 [Bindings] restore presence of SOAP nodes 
The node to exclude when ID-WSF is disactivated was soap_binding_ ones.
 2010-09-29 15:56:59 +02:00
Benjamin Dauvergne cd7b3e92c5 [Core] fix break of lasso_profile_get_request_type_from_soap_msg from commit b9d535625 
ManageNameIDRequest is not an ID-WSF kind of request.
 2010-09-29 00:10:09 +02:00
Benjamin Dauvergne 4a970453de [Core] add missing annotation to lasso_*_dump functions 
The string returned by these functions is newly allocated and must be
freed by the caller.
 2010-09-27 16:18:57 +02:00
Benjamin Dauvergne b4e04a0716 [ID-WSFv1] fix other misuses of the macro lasso_foreach 2010-09-27 16:18:30 +02:00
Benjamin Dauvergne 6cc9ae7e32 [SAMLv2] fix wrong order in use of macro lasso_foreach 
The first argument must be the iterator, the second is the iterable.
Also add a non-regression test with Googleapps metadata and and a
typical authn request.
 2010-09-27 16:17:07 +02:00
Benjamin Dauvergne 5bcbb0e55f [SAMLv2] fix early release of the request when using idp_initiaed login 2010-09-17 18:07:39 +02:00
Benjamin Dauvergne 1ffece0e57 [SAMLv2] fix memleak of request in lasso_name_id_management_process_request_msg 2010-09-17 18:01:31 +02:00
Benjamin Dauvergne 6adc8c3e54 [Tests] remove a valgrind suppression on g_log_default_handler 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 88623c29f3 [Tests] add valgrind targets in the Makefile: leakcheck, leakcheck-reachable and massif 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 19aad7629a [SAMLv2] fix memleak of request in lasso_saml20_login_process_authn_request_msg 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 667f846085 [Core] fix leak of provider->private_data->endpoints 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne d2adc740a2 [Tests] fix leak of content in test01_server_new 2010-09-17 17:02:41 +02:00
Benjamin Dauvergne 87c3f63dd0 [Tests] fix leak of idpLogoutContext in test04_sso_then_slo_soap 2010-09-17 17:02:41 +02:00