update NEWS
This commit is contained in:
parent
892ffac34f
commit
8aba7d4840
24
NEWS
24
NEWS
|
@ -24,7 +24,7 @@ Minor version number increase since ABI was extended (new methods).
|
||||||
|
|
||||||
See the FAQ file for the workflow of a proper key roll-over.
|
See the FAQ file for the workflow of a proper key roll-over.
|
||||||
|
|
||||||
- Partial logout reponse now produce a specific error code when parsed by
|
- Partial logout reponse now produces a specific error code when parsed by
|
||||||
lasso_logout_process_response_msg()
|
lasso_logout_process_response_msg()
|
||||||
- Bugs in lasso_assertion_query_build_request_msg() were fixed
|
- Bugs in lasso_assertion_query_build_request_msg() were fixed
|
||||||
- Processing of assertions is not stopped when checking that first level
|
- Processing of assertions is not stopped when checking that first level
|
||||||
|
@ -49,11 +49,31 @@ Minor version number increase since ABI was extended (new methods).
|
||||||
>>> a.setOriginalXmlnode('<Dummy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="string">Value</Dummy>')
|
>>> a.setOriginalXmlnode('<Dummy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="string">Value</Dummy>')
|
||||||
>>> print a.debug(0)
|
>>> print a.debug(0)
|
||||||
<saml:AttributeValue xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="string">Value</saml:AttributeValue>
|
<saml:AttributeValue xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="string">Value</saml:AttributeValue>
|
||||||
|
- support for symetric keys signatures: for a long time XMLDisg standard has
|
||||||
|
supported HMAC signature, or signature based on a shared secret key an hash
|
||||||
|
algorithm. Lasso now does support to share a key with another Lasso using
|
||||||
|
service or identity provider and to verify and sign SAML exchange using this
|
||||||
|
key. Performance can be 100 times more than with assymetric cryptography,
|
||||||
|
i.e. RSA.
|
||||||
|
- nodes able to hold any XML attribyte (like saml:AttributeValue) contains a
|
||||||
|
hashtable to for holding those attributes, those hashtable have a new syntax
|
||||||
|
for attributes of another namespace than the current node namespace,
|
||||||
|
inspired by the Python ElementTree library:
|
||||||
|
|
||||||
|
{the_namespace}the_attribute_name
|
||||||
|
|
||||||
|
ex:
|
||||||
|
|
||||||
|
{http://www.w3.org/2001/XMLSchema-instance}type
|
||||||
|
|
||||||
|
for the classic xsi:type attribute.
|
||||||
- The perfs benchmarking tools now allows to select a different metadata set
|
- The perfs benchmarking tools now allows to select a different metadata set
|
||||||
(for example to test with different public key sizes).
|
(for example to test with different public key sizes).
|
||||||
- Perl minimal version for the binding was downgraded to 5
|
- Perl minimal version for the binding was downgraded to 5
|
||||||
- an FAQ file was started.
|
- pseudo-XSchema validation: the new XML deserializer does more to enforce
|
||||||
|
constraints of the schema defining SAML messages. It means Lasso is less
|
||||||
|
forgiving with non-conform implementation of SAML.
|
||||||
|
- a FAQ file was started.
|
||||||
|
|
||||||
|
|
||||||
2.3.6 - November 29th 2011
|
2.3.6 - November 29th 2011
|
||||||
|
|
Loading…
Reference in New Issue