* lasso/id-ff/profile.{c,h}:
the method lasso_profile_sso_role_with, evaluate using the current
LassoIdentity content if we are in a relation of IdP or SP toward
another provider. This is based on the existence of a federation with
this provider.
* lasso/id-ff/profile.{c,h}:
add a LassoProfileSignatureVerifyHint enumeration and two accessor
methods:
- lasso_profile_get_signature_verify_hint
- lasso_profile_set_signature_verify_hint
* lasso/id-ff/profileprivate.h:
add private field signature_verify_hint.
* lasso/id-ff/profile.{c,h}:
add lasso_profile_add_soap_fault_response(char* code, char *string,
GList *details).
* lasso/id-wsf-2.0/profile.{c,h}:
change signature of lasso_idwsf2_profile_init_soap_fault_response.
* lasso/id-wsf-2.0/data_service.c:
use new function instead of manually intializing soap faults
* lasso/id-wsf-2.0/discovery.c:
init a soap fault when parsed request is of an unknown type, return
proper error.
* lasso/id-ff/provider.c:
fix lasso_provider_get_base64_succinct_id, it returned a libxml
string, copy it with g_strdup before releasing it to stay with GLib
allocated string in return values.
* nearly all C files: change includes for relative paths.
* lasso/id-wsf/id_wsf.h, lasso/id-wsf-2.0/id_wsf_2.h: add top level
public include files for ID-WSF 1.0 and ID-WSF 2.0.
* lasso/id-ff/server.*, lasso/id-ff/session.*, lasso/id-ff/identity.*:
remove most of the code related to ID-WSF and push into
lasso/id-wsf/id_ff_extensions.* and lasso/id-wsf-2.0/identity.c,
lasso/id-wsf-2.0/server.c, lasso/id-wsf-2.0/session.c.
* lasso/id-wsf-2.0/saml2_login.c,
lasso/id-wsf-2.0/saml2_login_private.h: same change but for ID-WSF
2.0 support in SAML2 SSO profile.
* lasso/id-ff/profile.c:
* lasso/id-ff/profile.h:
in a move to try to remove direct access to object content, add a
function to retrieve the LassoServer object of a LassoProfile.
* bindings/overrides.xml:
it conflicts with direct access to the public field server, so we do
not export it in the binding for now.
* lots of files: Explicitely set all field of initialized structures,
in order to remove -Wno-missing-field-initilizers from needed
compiler options when using -Wall -Wextra.
gaining back access to the nameFormat added late before 0.5.
There are no bindings for LassoSamlNameIdentifier; as a temporary and
compatible measure; profile->nameIdentifier in bindings continues to
return a char* (profile->nameIdentifier->content).
At the same time the same change has been done for
LassoNameRegistration->oldNameIdentifier.
on October 2nd; occasional merges since then).
- Compatible with current souk test suites.
- Missing memory management for everything in xml/
- Missing xmlsec support for SOAP messages.
It has been replaced with:
lasso_login_init_self_addressed_authn_request(remote_providerID);
/* ...Set protocolProfile, isPassive, consent, relayState here... */
lasso_login_process_authn_request_message(NULL,
lassoHttpMethodSelfAddressed);
This change was needed because there was no way to set isPassive, consent,
etc, before.
Standardized some error codes and messages.
Benjamin Dauvergne
Damien Laniel
Frédéric Péters
Nicolas Clapies
Emmanuel Raviart
Valery Febvre