entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity
lasso/lasso
History
Benjamin Dauvergne aebd6ed3d7 [SAMLv2] simplify logic for handling AuthnResponse with binding HTTP-Post 
The logic is now simpler:
 - first lasso_saml20_profile_process_any_response check the signature
   on the message
 - then lasso_saml20_login_process_response_status_and_assertion
   traverse all the assertions:
   - if the message is signed all assertion from the same issuer are
     automatically accepted,
   - if the message is not signed, or the signature validation failed,
     or the assertion has a different issuer than the message, we check
     the signature directly on the assertion. If any of the assertions
     fails the signature check, the result will be
     LASSO_PROFILE_ERROR_CANNOT_VERIFY_SIGNATURE.

The public field profile->signature_status will contain only the message
level signature status, each assertion signature status is not
accessible. That will change when signature and key handling is
reworked.
 		2010-07-20 14:15:55 +00:00
..
id-ff [ID-FFv1.2] move all user of lasso_node_export_to_query to lasso_node_export_to_query_with_password 2010-07-16 19:34:28 +00:00
id-wsf [Core] change return type of all error returning methods 2010-07-12 14:09:07 +00:00
id-wsf-2.0 [Core] change return type of all error returning methods 2010-07-12 14:09:07 +00:00
saml-2.0 [SAMLv2] simplify logic for handling AuthnResponse with binding HTTP-Post 2010-07-20 14:15:55 +00:00
xml [SAMLv2] comment on SessionIndex support hack 2010-07-19 15:56:33 +00:00
.cvsignore fixed symbols.sym case 2004-12-21 20:58:04 +00:00
Makefile.am [Core] add a lasso_error_t typedef 2010-07-12 14:08:55 +00:00
backward_comp.h Make multiple include loading work in lasso/backward_comp.h 2010-03-27 17:39:55 +00:00
build-strerror.pl * Move error message inside comments in lasso/errors.h 2008-08-01 14:08:31 +00:00
build_strerror.py Support multiline error messages in build_strerror.py 2010-02-22 13:30:30 +00:00
ctypes.h [Core] add a lasso_error_t typedef 2010-07-12 14:08:55 +00:00
debug.h Export the new flag 2009-04-30 14:58:17 +00:00
errors.c SAMLv2: add new methods to class LassoAssertionQuery 2010-06-10 13:38:00 +00:00
errors.c.in All: Rework include files handling, separated ID-WSF code from SAML2/ID-FF code 2009-08-26 15:14:32 +00:00
errors.h Core: move lasso_strerror declaration to errors.h 2010-06-12 00:43:43 +00:00
export.h [Core] add a lasso_error_t typedef 2010-07-12 14:08:55 +00:00
extract_sections.py Docs: change the doc production and lot of other fixes 2009-08-26 15:15:07 +00:00
extract_symbols.py Core: fix extract_symbols regular expression 2009-09-11 15:51:49 +00:00
extract_types.py Core: SOAP is also used by SAML bindings 2009-08-26 15:13:59 +00:00
lasso.c Core: move logging function and macros to their own module, adapt perl binding 2010-06-12 00:43:49 +00:00
lasso.h [Core] lasso_check_version does not return a proper error code 2010-07-12 14:09:11 +00:00
lasso_config.h.in Core: move logging function and macros to their own module, adapt perl binding 2010-06-12 00:43:49 +00:00
logging.c Core: move logging function and macros to their own module, adapt perl binding 2010-06-12 00:43:49 +00:00
logging.h Core: move logging function and macros to their own module, adapt perl binding 2010-06-12 00:43:49 +00:00
registry-private.h Fix leak of mapping registry 2009-04-30 14:58:22 +00:00
registry.c Improve safety by replacing all g_hash_table_destroy use by lasso_release_ghashtable 2010-04-22 00:45:02 +00:00
registry.h [Core] change return type of all error returning methods 2010-07-12 14:09:07 +00:00
utils.c Utils: add function to extract/create node in lists 2010-06-09 16:54:49 +00:00
utils.h [Core] add macro to release an xmlNodeList object 2010-06-29 14:15:02 +00:00