entrouvert
/
simplesamlphp
Archived
17
0
Fork 0
Code Issues Pull Requests Releases Activity
3,185 Commits 2 Branches 0 Tags 8.8 MiB
Commit Graph

597 Commits

Author SHA1 Message Date
jaimepc@gmail.com ab4ea04cb1 Add support to publish RegistrationInfo (MDRPI) in the IdP. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3339 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-28 15:19:17 +00:00
jaimepc@gmail.com 4522bf2864 Fix for bug introduced in r3332. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3336 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-28 00:24:41 +00:00
jaimepc@gmail.com 8f3e092e40 Language fixes. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3333 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-27 09:28:12 +00:00
jaimepc@gmail.com 445fee4ba8 Followup on previous commits. Use redirectUntrustedURL() as a shortcut, and let everything else make use of redirectTrustedURL(). Move the responsibility to check the input out of the library, to the places where URLs are grabbed from input parameters. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3332 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-24 16:36:54 +00:00
jaimepc@gmail.com 2395b7ba3e Fix for issue #613. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3330 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-24 16:35:49 +00:00
jaimepc@gmail.com 952fc24f8c Start using the redirectTrustedURL() and redirectUntrustedURL() wrappers. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3326 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-17 15:40:02 +00:00
jaimepc@gmail.com ee8ab30dc9 Cleanup 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3323 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-17 15:38:41 +00:00
jaimepc@gmail.com fa8fc9dcc8 Fix for issue #584. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3314 44740490-163a-0410-bde0-09ae8108e29a
 2014-01-06 16:42:23 +00:00
jaimepc@gmail.com 9042cdb16c Split binding prioritizing out of getDefaultEndpoint to a new getEndpointPrioritizedByBinding function. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3303 44740490-163a-0410-bde0-09ae8108e29a
 2013-11-26 14:30:26 +00:00
jaimepc@gmail.com c5319a4dac HTTP-POST SLO support for the old, deprecated SP interface. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3263 44740490-163a-0410-bde0-09ae8108e29a
 2013-08-22 10:09:15 +00:00
jaimepc@gmail.com 76d9c5e50d Complete bugfix for issue #561. HTTP-Post supported for SLO not initiated by the SP. Working for both traditional logout and iframe version. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3262 44740490-163a-0410-bde0-09ae8108e29a
 2013-08-13 10:28:38 +00:00
jaimepc@gmail.com 0e138f43f7 Full support for HTTP-POST binding in WebSSO profile. Two new directives in hosted metadata (SingleSignOnServiceBinding and SingleLogoutServiceBinding) to control the bindings published as supported in the metadata. 
Bugfix in the logout handler (SOAP binding should be reused when responding a request).

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3257 44740490-163a-0410-bde0-09ae8108e29a
 2013-07-17 12:04:51 +00:00
jaimepc@gmail.com e7c7d89c05 Fixes for issues #539, #540, #541 and #542. Thanks to Thijs Kinkhorst for the patches. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3229 44740490-163a-0410-bde0-09ae8108e29a
 2013-03-21 09:04:47 +00:00
jaimepc@gmail.com fbc85a9d53 Fix some typos with method Session::getTrackID() 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3225 44740490-163a-0410-bde0-09ae8108e29a
 2013-01-23 14:01:48 +00:00
jaimepc@gmail.com 55cb2aa5c2 Fix for SLO in WS-Fed. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3213 44740490-163a-0410-bde0-09ae8108e29a
 2012-12-13 13:08:44 +00:00
jaimepc@gmail.com 5735db42b4 Fixed a bug on ArtifactResolutionService introduced by a previous commit on new SHA signatures support. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3186 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-09 10:31:13 +00:00
olavmrk fef94dc438 Remove executable-property from non-executable files. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3131 44740490-163a-0410-bde0-09ae8108e29a
 2012-07-12 10:37:44 +00:00
olavmrk c9d5402cba shib13: Fix reauthentication bug. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3129 44740490-163a-0410-bde0-09ae8108e29a
 2012-07-06 09:21:42 +00:00
olavmrk fd7b105911 Add support for the MDUI extension. 
This patch adds support parsing and generating metadata with the
mdui:UIInfo and mdui:DiscoHints elements.

Support for generating metadata with the extensions is added to the
SAML 2.0 IdP. It should also work through the metadata aggregator.

Thanks to Timothy Ace at Synacor, Inc. for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3088 44740490-163a-0410-bde0-09ae8108e29a
 2012-05-04 08:03:44 +00:00
comel.ah 6b3d4d841b Add session.disable_fallback option (issue #492). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3082 44740490-163a-0410-bde0-09ae8108e29a
 2012-05-03 11:53:56 +00:00
olavmrk a168fa3fac Support for holder-of-key profile. 
This patch adds support for the holder-of-key profile for both the
SAML 2.0 SP and the SAML 2.0 IdP.

Thanks to Andreas Mayer for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3061 44740490-163a-0410-bde0-09ae8108e29a
 2012-03-29 10:32:27 +00:00
olavmrk 70e3eb85c4 Fix two user-assisted cross site scripting attacks. 
Thanks to Google Code user timtai1 for notifying us about this
problem!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3009 44740490-163a-0410-bde0-09ae8108e29a
 2012-01-10 13:11:01 +00:00
olavmrk 6d367edbe8 Avoid fatal PHP error due to deprecation-warnings during autoloading. 
Due to a PHP bug combined with deprecation-warnings from the OpenID
library, we may fail with a fatal error due to not finding the
SimpleSAML_Logger class.

See PHP bug: https://bugs.php.net/bug.php?id=47987

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2999 44740490-163a-0410-bde0-09ae8108e29a
 2011-12-08 13:56:41 +00:00
olavmrk 5b9db58c85 Add Utilities::getBaseURL() to URL debug page. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2983 44740490-163a-0410-bde0-09ae8108e29a
 2011-11-17 12:11:17 +00:00
olavmrk 7eb47705c4 errorreport: Add hostname to the report. 
Thanks to Thijs Kinkhorst for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2975 44740490-163a-0410-bde0-09ae8108e29a
 2011-11-07 10:30:02 +00:00
olavmrk 1f722c9f26 Add support for hashed passwords & add authcrypt:Hash authsource. 
Thanks to Dyonisius Visser for implementing this.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2962 44740490-163a-0410-bde0-09ae8108e29a
 2011-10-28 08:17:18 +00:00
olavmrk ee383de867 module.php: Be more paranoid when verifying paths. 
Cannot see a way that this can be used to escape the module www
directory, but being more specific in the test won't hurt.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2961 44740490-163a-0410-bde0-09ae8108e29a
 2011-10-28 08:17:01 +00:00
comel.ah b37b198b61 Sign artifact response (issue 429). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2895 44740490-163a-0410-bde0-09ae8108e29a
 2011-09-07 08:25:24 +00:00
olavmrk 852d5b3f61 Rename _x_. to gradient.jpg 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2878 44740490-163a-0410-bde0-09ae8108e29a
 2011-08-01 06:51:41 +00:00
olavmrk 93c327043d Fix occured->occurred. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2874 44740490-163a-0410-bde0-09ae8108e29a
 2011-07-22 09:10:17 +00:00
olavmrk a77fb9df74 saml2/idp: Allow downloading of certificate files. 
Thanks to Dyonisius Visser for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2858 44740490-163a-0410-bde0-09ae8108e29a
 2011-05-27 11:25:50 +00:00
olavmrk 812669e16a Initial RTL support. 
Thanks to Brook Schofield for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2850 44740490-163a-0410-bde0-09ae8108e29a
 2011-05-26 10:40:00 +00:00
olavmrk 8fbebe50b6 Remove unnecessary ../www/ from include paths. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2817 44740490-163a-0410-bde0-09ae8108e29a
 2011-04-14 06:40:04 +00:00
olavmrk ed813c5b92 _include.php: Disable magic_quotes_runtime. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2742 44740490-163a-0410-bde0-09ae8108e29a
 2011-03-07 13:22:27 +00:00
olavmrk ec072a8eed saml2/idp: Do not include technical contact in metadata unless it is configured. 
Thanks to Andjelko Horvat for providing this patch!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2683 44740490-163a-0410-bde0-09ae8108e29a
 2010-12-10 14:08:08 +00:00
olavmrk 6984b58c4a www/auth/login-cas-ldap: HTTP proxy support. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2667 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-30 10:07:08 +00:00
olavmrk 58fbe571aa authmemcookie: Use the new compatibility class. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2650 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:32:36 +00:00
olavmrk 3bc0d278e8 www/wsfed/sp: Use the new interface in Session. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2644 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:31:37 +00:00
olavmrk 651783d344 www/shib13/sp: Use the new interface in Session. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2643 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:31:28 +00:00
olavmrk ac1474c76b www/saml2/sp: Use the new interface in Session. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2642 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:31:18 +00:00
olavmrk 2e3a499d47 Session: Remove clean()-function. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2634 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:30:03 +00:00
olavmrk 1f62f3801d Session: Remove NameID conversion code. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2632 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-16 14:29:42 +00:00
olavmrk 15d351b3a5 module.php: Fix mimetype when filename contains ".". 
Thanks to Sixto Martin for providing this patch.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2623 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-08 13:54:07 +00:00
olavmrk 93ca0a5678 saml: Add support for key rollover. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2617 44740490-163a-0410-bde0-09ae8108e29a
 2010-11-02 11:20:57 +00:00
olavmrk 7b3f08e251 www/wsfed: Fix certificate-option in metadata. 
This bug was introduced in r2237.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2565 44740490-163a-0410-bde0-09ae8108e29a
 2010-09-27 07:51:02 +00:00
olavmrk 173cbf425c errorreport: Include referer inn error report. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2563 44740490-163a-0410-bde0-09ae8108e29a
 2010-09-22 06:29:23 +00:00
olavmrk bbc38a29ac saml_Message: Allow multiple assertions in response. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2556 44740490-163a-0410-bde0-09ae8108e29a
 2010-09-20 08:40:12 +00:00
olavmrk f86e9ea448 Remove the old debug infrastructure. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2542 44740490-163a-0410-bde0-09ae8108e29a
 2010-09-10 13:14:09 +00:00
olavmrk 74f1526271 ArtifactResolutionService: Return empty ArtifactResponse when receiving a duplicate ArtifactResolve. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2534 44740490-163a-0410-bde0-09ae8108e29a
 2010-09-09 07:21:03 +00:00
olavmrk 8f29cea376 IdP/Artifact: Use the new datastore to store artifacts. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@2491 44740490-163a-0410-bde0-09ae8108e29a
 2010-08-09 08:51:13 +00:00