The APR_ARRAY_PUSH() macro was recently added to apr. Instead of using
it, just use apr_array_push().
Thanks to Benjamin Dauver for providing this patch!
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@143 a716ebb1-153a-0410-b759-cfb97c6a1b53
- If request miss needed elements AuthnStatement or AuthnContext, HTTP
status BadRequest is returned.
- If request does not match one of the required AuthnContextClassRef,
HTTP status Forbidden is returned.
Thanks to Benjamin Dauvergne for implementing this.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@141 a716ebb1-153a-0410-b759-cfb97c6a1b53
You can list many class refs they will be concatenated inside an array.
Beware that in each directory, if there is any
MellonAuthnContextClassRef directive, any settings from the previous
level is overwritten.
Thanks to Benjamin Dauvergne for implementing this.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@140 a716ebb1-153a-0410-b759-cfb97c6a1b53
We used GHashTableIter, which wasn't introduced before version 2.16 of
GLib. This patch changes the code to simply use g_hash_table_get_keys
instead.
(This means that we depend on GLib 2.14.)
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@137 a716ebb1-153a-0410-b759-cfb97c6a1b53
Change configuration to inherit the lasso_server objects when nothing
affecting the lasso_server object changes from the parent configuration
object.
This should speed up processing of requests where you have
request-specific configuration changes, such as access control rules.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@130 a716ebb1-153a-0410-b759-cfb97c6a1b53
Lasso initializes the SessionIndex attribute of LogoutRequest message
itself since release 2.3.4 and directly remove the related assertions
since 2.3.0, so the old way to initialize the SessionIndex cannot work
anymore. Between version 2.3.0 and 2.3.4 it just cannot work at all but
it is better to send a broken logout request missing the SessionIndex
attribute than to raise a segmentation fault.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@121 a716ebb1-153a-0410-b759-cfb97c6a1b53
Unfortunately, the lasso_server objects were never destroyed, which
led to a memory leak when using request-specific configuration.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@118 a716ebb1-153a-0410-b759-cfb97c6a1b53
On 64-bit, "0" is an 32-bit integer while the parameter list should be
terminated by a 64-bit NULL pointer. Change the parameter to NULL to
avoid possible misbehaviour due to this.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@115 a716ebb1-153a-0410-b759-cfb97c6a1b53
ap_construct_url() use the ServerName directive to reconstruct an
absolute URL. It allows to force the use of an https:// URL (when you
are behind an SSL proxy it is needed) by configuring your VirtualHost
like that:
ServerName https://example.com
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@110 a716ebb1-153a-0410-b759-cfb97c6a1b53
- NameIdManagement endpoint is incorrectly listed (and useless if only
transient federation are expected).
- an HTTP-Artifact endpoint for the AssertionConsumerService was added,
letting HTTP-Post as the default binding.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@105 a716ebb1-153a-0410-b759-cfb97c6a1b53