9abe3e4cdc
Handle logout-request while logged out.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@41 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-03-06 08:33:17 +00:00
d8890ecb44
Add a MellonSecureCookie setting to enforce Secure + HttpOnly flags for
...
session cookies.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@40 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-03-02 13:56:35 +00:00
7a1a61171f
Version 0.1.0.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@39 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-11 21:05:58 +00:00
580f77f379
Updated NEWS file in preparation of version 0.1.0.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@38 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-11 21:05:50 +00:00
0c9fa54375
Document MellonSPCertFile and MellonIdPCAFile options in the README file.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@37 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-11 21:05:44 +00:00
421b8190be
Add MellonDefaultLoginPath option.
...
This option is used to decide which page the user should be
redirected to if IdP-initiated SSO is used.
Thanks to Emmanuel Dreyfus for this patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@36 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-11 20:07:44 +00:00
e8069a2825
Use lasso_server_new_from_buffer if available.
...
Recent versions of Lasso supports loading the SP metadata,
certificate and private key from memory. This patch changes mod_mellon
to use this function if it is available. This makes it possible to store
the SP private key readable only from root.
Thanks to Emmanuel Dreyfus for this patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@35 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-10 18:33:55 +00:00
18a8e091a6
Add IdP initiated SSO support.
...
This patch adds support for IdP initiated SSO, and also creates more
resistance to DOS attacks.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@34 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-10 18:31:14 +00:00
c1badad944
Add two missing configuration merges from CA cert and SP cert support.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@33 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-11-10 18:31:06 +00:00
cec59fc8bb
Adjust log level of two messages
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@32 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-27 11:09:03 +00:00
b71e41f433
Add support for IdP CA certificate and SP certificate.
...
Thanks to Emmanuel Dreyfus for this patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@31 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-27 11:08:57 +00:00
aa2e53284c
Add support for BSD make.
...
Thanks to Emmanuel Dreyfus for this patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@30 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-27 06:28:58 +00:00
41f49da13f
Give a more helpful error message if the there is a problem with SP metadata.
...
Thanks to Emmanuel Dreyfus for this patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@29 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-20 11:50:22 +00:00
9aaaf79f05
Handle errors when locking session mutex.
...
In some cases it is possible that the mutex lock operation
fails. This makes the server return a 500 Internal Server Error
in those cases, instead of crashing.
Thanks to Emmanuel Dreyfus for the patch.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@28 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-20 11:50:17 +00:00
4a11abb076
Set permissions on global mutex after creation.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@27 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-10-20 11:50:10 +00:00
daeadc382d
Update version to 0.0.7
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@26 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-07-01 13:44:45 +00:00
0226e94851
urldecode ReturnTo url in SP initiated logout.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@25 a716ebb1-153a-0410-b759-cfb97c6a1b53
2008-07-01 13:44:38 +00:00
f46ef739dc
Added previous change to NEWS file.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@24 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-12-11 08:00:06 +00:00
7b546ecc3d
Fixed handling of multiple AttributeValue elements in response.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@23 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-12-11 07:58:12 +00:00
80aa9b0ff0
Increased maximum Lasso session size.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@22 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-26 13:37:54 +00:00
506a5b2106
Fixed a memory leak in am_auth_new_ticket.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@21 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 09:45:01 +00:00
ae35c73562
Added NEWS file to distribution files.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@20 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 07:54:39 +00:00
d9552c7904
Added NEWS file.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@19 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 07:47:39 +00:00
746c583ccd
Removed TODO: Customizable default logout location.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@18 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 07:32:37 +00:00
35fe358ed2
Make the ReturnTo parameter to the SP initiated logout handler mandatory.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@17 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 07:29:53 +00:00
5df05d8ef2
Added documentation about SP initiated logout.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@16 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-10-01 07:29:47 +00:00
085897a2b2
TODO completed: SP initialized logout
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@15 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:08:17 +00:00
23829015a3
Added TODO: Customizable default logout location.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@14 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:08:13 +00:00
56c198ec6e
Added RedirectTo parameter to logout response.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@13 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:08:09 +00:00
3c088e2124
Copy SessionIndex to LogoutRequest.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@12 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:08:05 +00:00
30316c8f04
Fix bug which made the logout handler the handler for unknown/misspelled endpoints.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@11 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:58 +00:00
0a715a374f
Initial logout response handler.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@10 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:53 +00:00
b8dc70fa1d
Implementation of am_init_logout_request.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@9 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:49 +00:00
1ad86aae55
Skeleton for SP initiated logout.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@8 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:44 +00:00
ec25fac782
Split logout handling into am_handle_logout and am_handle_logout_request.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@7 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:39 +00:00
d9b71c368f
Renamed logout endpoint from logoutRequest to logout.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@6 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-28 14:07:34 +00:00
bdb629e129
TODO: SP initialized logout
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@4 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-24 09:58:06 +00:00
1fa6146abe
Initial import of version 0.0.6
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk@3 a716ebb1-153a-0410-b759-cfb97c6a1b53
2007-09-24 09:56:34 +00:00
olavmrk
manu@netbsd.org