Benjamin Dauvergne
15781d1960
fix pardus capitalisation in NEWS file
2010-10-08 19:18:30 +02:00
Benjamin Dauvergne
0325ce0867
Update release notes and website for release 2.3.4
2010-10-08 18:34:19 +02:00
Benjamin Dauvergne
758fe88dad
[xml] fix waring on use of strndup on pardus
2010-10-08 14:10:26 +02:00
Jérôme Schneider
270f1743f0
Add missing include <errno.h>
2010-10-08 14:10:02 +02:00
Benjamin Dauvergne
3872f17fcd
[SAMLv2] handle unknown provider in artifact resolve, and also alow to ignore signature validation
...
In lasso_saml20_profile_process_artifact_resolve, we know take a short
path with an error when the remote provider is unknown and we also
respect the lasso_profile_get_signature_verify_hint() when checking the
signature on the artifact resolve message.
2010-10-07 18:48:28 +02:00
Benjamin Dauvergne
4bf2a6c0c0
[SAMLv2] fix bad double free bug in lasso_saml20_provider_get_assertion_consumer_service_url_by_binding
2010-10-07 18:39:06 +02:00
Benjamin Dauvergne
6b2a21d116
[core] adapt lasso_provider_get_assertion_consumer_service_url for SAMLv2
2010-10-07 18:38:21 +02:00
Benjamin Dauvergne
3e87282db3
[docs lasso-book] add figures to the tarball
2010-10-06 18:43:57 +02:00
Benjamin Dauvergne
21d61b5ba6
[configure.ac] increment version and libtool version info
2010-10-06 17:02:18 +02:00
Benjamin Dauvergne
5d56e4558e
[ID-FFv1.2] in lasso_login_process_authn_request_msg() adopt simpler behaviour for checking signatures
...
There is two sources of advice for signature checking:
AuthnRequestsSigned attribute in service provider metadata files and
value of lasso_profile_get_signature_verify_hint().
If lasso_profile_get_signature_verify_hint() forbid to check signature,
we do not check.
If the SP advise to check signature, we check.
If lasso_profile_get_signature_verify_hint() forces to check signature,
we do not check.
In all other cases we only check if a signature is present, i.e. we
ignore the error LASSO_DS_ERROR_SIGNATURE_NOT_FOUND.
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
58a3868361
[ID-FFv1.2] make lasso_login_process_authn_request_msg() return LASSO_PROFILE_ERROR_INVALID_MSG if received request is not a lib:AuthnRequest
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
7a27400a87
[SAMLv2] adopt same behaviour as ID-FFv1.2 for invalid AuthnRequest
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
6be8d9cfa8
[SAMLv2&ID-FFv1.2] improve documentation of lasso_login_process_authn_request_msg
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
06c2ec9d61
[SAMLv2] fix ordering of endpoints
...
Ordering by binding is wrong, first order by isDefault (as stated in
saml-metadata-2.0.pdf) then by index.
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
3d1d90ee31
[Core] change isdefault type in EndpointType structure
...
As integer we can represent the three value of isdefault:
- true
- false
- attribute absent
2010-10-06 17:00:52 +02:00
Benjamin Dauvergne
e2611e16d6
[docs] update copyright years
2010-10-06 17:00:18 +02:00
Benjamin Dauvergne
0bd4c25a24
Merge branch 'hotfixes-2.3.3' into release
2010-10-01 19:13:31 +02:00
Benjamin Dauvergne
19cb0bf52b
[Website] add news about 2.3.3 and update doap and main page
2010-10-01 19:11:32 +02:00
Benjamin Dauvergne
a33c76aaf1
[Release] add release notes
2010-10-01 19:06:33 +02:00
Benjamin Dauvergne
86f0f6b6f2
[SAMLv2] restore setting of SubjectConfirmationData->NotOnOrAfter
...
This was wrongly removed by me in commit
9d22f29e55
.
This is the responsability of the caller to adjust value on the
Conditions and SubjectConfirmationData independently after.
2010-10-01 17:44:40 +02:00
Benjamin Dauvergne
d9bc35e01a
[Binding java] replace use of strcmp by g_strcmp0
2010-10-01 15:29:42 +02:00
Benjamin Dauvergne
0c82592a99
[Tests] add annotation to remove compiler warnings
2010-10-01 15:29:42 +02:00
Benjamin Dauvergne
462c9a1cd0
[Core] replace all use of g_strcmp0 by lasso_strisequal and lasso_strisnotequal
...
Too much human errors with strcmp kind of functions. Also change name os
lasso_is_empty_string to lasso_strisempty.
2010-10-01 15:29:38 +02:00
Benjamin Dauvergne
b5fcbc6455
[Core] add helper API for string comparaison
...
It should remove most errors when comparing strings.
2010-10-01 15:13:49 +02:00
Benjamin Dauvergne
fe63f7a517
[SAMLv2] add missing compare to 0 introduced in 7386dc8189
...
I hate strcmp.
2010-10-01 12:22:17 +02:00
Benjamin Dauvergne
c02711bf79
[Bindings] change prefix for ignoring soap_binding related files
2010-09-30 11:21:09 +02:00
Benjamin Dauvergne
4c3af26a58
[SAMLv2] also initialize Destination for response messages
...
asynchronous bindings needs Destination attribute even for response
messages.
2010-09-30 10:58:50 +02:00
Benjamin Dauvergne
7386dc8189
[SAMLv2] when NidPolicy->Format is NULL or unspecified, return transient
...
Add more default cases.
2010-09-30 10:58:18 +02:00
Benjamin Dauvergne
b20552c417
[Tests] update perfs to test each phase of WebSSO separately and use SAMLv2
...
I removed signature at the message level for the response, it should
simulate apporiately the artifact binding with SSL transport.
2010-09-29 18:27:19 +02:00
Benjamin Dauvergne
5f7a08acb3
[Bindings] restore presence of SOAP nodes
...
The node to exclude when ID-WSF is disactivated was soap_binding_ ones.
2010-09-29 15:56:59 +02:00
Benjamin Dauvergne
cd7b3e92c5
[Core] fix break of lasso_profile_get_request_type_from_soap_msg from commit b9d535625
...
ManageNameIDRequest is not an ID-WSF kind of request.
2010-09-29 00:10:09 +02:00
Benjamin Dauvergne
4a970453de
[Core] add missing annotation to lasso_*_dump functions
...
The string returned by these functions is newly allocated and must be
freed by the caller.
2010-09-27 16:18:57 +02:00
Benjamin Dauvergne
b4e04a0716
[ID-WSFv1] fix other misuses of the macro lasso_foreach
2010-09-27 16:18:30 +02:00
Benjamin Dauvergne
6cc9ae7e32
[SAMLv2] fix wrong order in use of macro lasso_foreach
...
The first argument must be the iterator, the second is the iterable.
Also add a non-regression test with Googleapps metadata and and a
typical authn request.
2010-09-27 16:17:07 +02:00
Benjamin Dauvergne
5bcbb0e55f
[SAMLv2] fix early release of the request when using idp_initiaed login
2010-09-17 18:07:39 +02:00
Benjamin Dauvergne
1ffece0e57
[SAMLv2] fix memleak of request in lasso_name_id_management_process_request_msg
2010-09-17 18:01:31 +02:00
Benjamin Dauvergne
6adc8c3e54
[Tests] remove a valgrind suppression on g_log_default_handler
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
88623c29f3
[Tests] add valgrind targets in the Makefile: leakcheck, leakcheck-reachable and massif
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
19aad7629a
[SAMLv2] fix memleak of request in lasso_saml20_login_process_authn_request_msg
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
667f846085
[Core] fix leak of provider->private_data->endpoints
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
d2adc740a2
[Tests] fix leak of content in test01_server_new
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
87c3f63dd0
[Tests] fix leak of idpLogoutContext in test04_sso_then_slo_soap
2010-09-17 17:02:41 +02:00
Benjamin Dauvergne
69f46ad974
[Core] fix leak of provider->private_data->endpoints
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
73949289ee
[XML] fix memleak in lasso_node_export_to_soap
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
3631ad59a9
[XML] fix memleak of xmlSecKeyMngr when loading a key from a KeyInfo node
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
fdd401cea7
[XML] fix memleak in get_xmlNode for LassoSamlp2LogoutRequest
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
0b8bec9b78
[XML] fix memleak in get_xmlNode for LassoSamlp2Response
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
56d81aa6e7
[SAMLv2] add missing stack variable initialization
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
1c0dd4b014
[SAMLv2] fix unused variable warning
2010-09-17 17:02:40 +02:00
Benjamin Dauvergne
6eeebd0304
[SAMLv2] in profile.c fix uncovered enumeration value in switch
2010-09-17 17:02:40 +02:00