entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity
4,230 Commits 7 Branches 40 Tags 14 MiB
Commit Graph

36 Commits

Author SHA1 Message Date
Benjamin Dauvergne 7231771856 All: Rework include files handling, separated ID-WSF code from SAML2/ID-FF code 
* nearly all C files: change includes for relative paths.
 * lasso/id-wsf/id_wsf.h, lasso/id-wsf-2.0/id_wsf_2.h: add top level
   public include files for ID-WSF 1.0 and ID-WSF 2.0.
 * lasso/id-ff/server.*, lasso/id-ff/session.*, lasso/id-ff/identity.*:
   remove most of the code related to ID-WSF and push into
   lasso/id-wsf/id_ff_extensions.* and lasso/id-wsf-2.0/identity.c,
   lasso/id-wsf-2.0/server.c, lasso/id-wsf-2.0/session.c.
 * lasso/id-wsf-2.0/saml2_login.c,
   lasso/id-wsf-2.0/saml2_login_private.h: same change but for ID-WSF
   2.0 support in SAML2 SSO profile.
 2009-08-26 15:14:32 +00:00
Benjamin Dauvergne fbfbe5553d ID-FF&Core: Seal public field of LassoSession 
* id-ff/session.h: seal public fields.

 * id-ff/session.c, id-ff/sessionprivate.h: add accessors for reading
   the is_dirty flag and counting store assertions.

 * id-ff/logout.c, id-ff/login.c, saml-2.0/login.c, saml-2.0/logout.c,
   saml-2.0/profile.c: use the new accessors.

 * id-ff/profile.c: include the private header file, use the new
   accessors, and remove unnecessary setting of is_dirty to FALSE (it
   should be false at instanciation).

 * utils.h: add a macro to access private content, prepare for using
   G_TYPE_INSTANCE_GET_PRIVATE and the GObject infrastructure for
   private structures eventually.
 2009-08-26 15:13:55 +00:00
Benjamin Dauvergne c5f5f84329 SAML 2.0: Fix many leaks 
* lasso/saml-2.0/login.c:
 * lasso/saml-2.0/logout.c:
 * lasso/saml-2.0/name_id_management.c:
 * lasso/saml-2.0/profile.c:
 * lasso/saml-2.0/provider.c:
   do not mix g_malloc strings with libxml strings, use the
   string/gobject handling macros as much as possible, be a good memory
   citizen, don't put your elbows on the table.
 2009-04-30 14:58:11 +00:00
Benjamin Dauvergne 2a75e87543 More work on signature validation for SAML 2.0 
* lasso/saml-2.0/profile.c:
   in lasso_saml20_profile_process_any_request and
   lasso_saml20_profile_process_any_response do not make signature
   validation failure as call failure, just store the result in
   profile->signature_status and let the upper level functions handle
   what to do with it. also add documentation about those two functions.

 * lasso/saml-2.0/logout.c:
 * lasso/saml-2.0/name_id_management.c:
   handle new signature_status semantic.

 * lasso/saml-2.0/login.c:
   add internal documentation for
   lasso_saml20_login_process_authn_response_msg.
 2009-04-27 15:48:53 +00:00
Benjamin Dauvergne aad866ab67 SAML 2.0: simplify redirect binding code path 
* lasso/saml-2.0/login.c, lasso/saml-2.0/logout.c,
   lasso/saml-2.0/name_id_management.c: simplify code path associated
   with generation of the url for the HTTP-Redirect binding using the
   rencently introduced function
   lasso_saml20_profile_build_http_redirect.
 2009-03-27 15:05:50 +00:00
Benjamin Dauvergne 32dc71ec3b SAML 2.0 Logout: use generic methods 
* lasso/saml-2.0/logout.c:
   use new generic methods in
   lasso_saml20_logout_process_request_msg, and
   lasso_saml20_logout_process_response_msg.
 2009-03-27 15:05:16 +00:00
Benjamin Dauvergne b09ef2e015 Core: do not mix public and private headers 
* lots of files:
   explicitely load the internal header xml/private.h where needed.
 2009-03-27 15:04:26 +00:00
Benjamin Dauvergne 9ed0670e48 * Remove ending blanks 2008-09-12 15:06:58 +00:00
Benjamin Dauvergne ae1f6a297c * Remove warnings: 
- remove unused parameter from private function signatures
 - remove unused variable
 - initialize variable potentially accessed uninitialized
 - add G_GNUC_UNUSED if function is public or adhering to an interface, and a
   parameter is unused.
 - if ID-WSF is not compiled in, define stubs with G_GNUC_UNUSED on parameters.
 The goal is to compile with -Werror.
 2008-09-12 13:57:22 +00:00
Frédéric Péters f728465716 forbit query strings to be xml signed 2008-05-29 14:14:48 +00:00
Damien Laniel a6ed1b1c11 added some more missing unreference 2008-05-21 17:28:44 +00:00
Damien Laniel 4fc6657e0c updated Copyright dates in all files 2007-05-30 17:17:45 +00:00
Frédéric Péters 78b83a37b1 misc fixes for 1) memory leaks around XPath usage and 2) potential segfaults 
from untested pointers
 2007-01-03 23:35:17 +00:00
Frédéric Péters 92198cc527 insure sso and slo from SAML2 work even when there are active ID-FF sessions. 2007-01-03 20:59:26 +00:00
Frédéric Péters 48bf78625b removed XXX comment about SessionIndex since it is handled in the application, 
not in Lasso
 2006-12-28 19:19:36 +00:00
Frédéric Péters be476b2af6 replaced all usage of UNDEFINED error code in logout profiles (both ID-FF 
and SAMLv2) by appropriate error codes
 2006-12-27 23:41:14 +00:00
Damien Laniel 13f707bf30 Allow the choice of the encryption algorithm to use 2006-12-20 09:03:41 +00:00
Frédéric Péters 6c39cf413b set Destination and handle relayState 2006-12-06 09:25:42 +00:00
Frédéric Péters f849a3a7f5 return missing assertion error on missing assertion 2006-12-05 10:24:59 +00:00
Frédéric Péters 993f96ed40 look up for the right federation based on affiliation in logout 2006-12-04 15:49:50 +00:00
Frédéric Péters fa020c55e4 use federation from affiliation if necessary in logout 2006-12-04 15:22:45 +00:00
Frédéric Péters 3f0e002795 on logout response, if responder then look inside for real value 2006-12-01 11:13:07 +00:00
Damien Laniel a9daf8facc Fixed logout request signature 2006-11-30 19:43:14 +00:00
Frédéric Péters 08bcef745b re-enabling saml2 signature check 2006-11-29 23:36:26 +00:00
Damien Laniel 4078845aa2 Added an error type when there is no key to decrypt some encrypted elements 2006-11-28 13:40:55 +00:00
Frédéric Péters df367439b7 removed unused variable 2006-11-27 20:11:09 +00:00
Damien Laniel 03aa90b8b7 Removed useless headers 2006-11-23 17:41:17 +00:00
Damien Laniel 89c1aa5116 Encrypt and decrypt NameID in logout requests 2006-11-23 17:34:37 +00:00
Frédéric Péters 0f11bb2491 fixed up lasso_saml20_logout_process_response_msg function name; and remove 
assertion on SP when initiated on SP.
 2006-11-15 16:41:55 +00:00
Frédéric Péters 498845547c don't set inResponseTo if there is no request 2006-11-10 15:12:42 +00:00
Frédéric Péters aec4544976 fixed url/query construction for endpoints with query part (zxid) 2006-11-07 12:44:32 +00:00
Frédéric Péters daa7cfbaa3 appropriate return code 2006-11-05 19:36:10 +00:00
Frédéric Péters 5be9193358 fixed small memory leak in saml2 slo 2006-11-04 15:23:48 +00:00
Frédéric Péters 64ebae839c already set remote_provider_id in process_request 2006-11-02 11:52:34 +00:00
Frédéric Péters d17bbf258d Completed first go of SAML 2.0 single logout and added some missing files 2005-11-22 21:24:12 +00:00
Frédéric Péters 853f46fd93 starting SAML 2 logout 2005-11-21 18:51:52 +00:00