entrouvert
/
modmellon
17
0
Fork 0
Code Issues Pull Requests Releases Activity
141 Commits 10 Branches 11 Tags 1.4 MiB
Commit Graph

141 Commits

Author SHA1 Message Date
olavmrk 60a4595c20 debian: Add debug-symbol package. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@96 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-30 14:02:19 +00:00
olavmrk 5ab0f17440 debian: Fix path to README-file in description. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@95 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-30 14:02:14 +00:00
olavmrk e68154384b login endpoint 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@94 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-18 11:15:48 +00:00
olavmrk d5771dc6ea Refactor out am_send_authn_request from am_auth_new_ticket. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@93 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-18 11:15:44 +00:00
olavmrk 519fd01075 Check whether the metadata files exists before passing them to Lasso. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@92 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:32:04 +00:00
olavmrk 7f9dc4e7ce mellon_create_metadata.sh: Use hostname as CN during metadata creation. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@91 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:17:51 +00:00
olavmrk 820d5954a2 Fix memory leak on no-cookie error during response processing. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@90 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:17:47 +00:00
olavmrk 79ac69136d Set the MellonIDP variable to the IdP that we got a response from. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@89 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:17:42 +00:00
olavmrk 542e0eab6a Add missing session unlock in am_check_uid. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@88 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:17:38 +00:00
olavmrk 4b7651ac29 Display proper error when missing MellonSPMetadataFile. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@87 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-06-17 07:17:34 +00:00
olavmrk 1a8daf22fc Version 0.2.7 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@86 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-05-31 13:13:49 +00:00
manu@netbsd.org 190c042a2a Shibboleth 2 interoperability. This is acchieved by increasing the 
storage for attributes, as OID-named attributes sent by the Shibboleth
IdP consomes quite some space.

There is also a required Destination attribute in AuthnRequest elements.
It is done by trunk version of lasso, but not by any currently released
version, hence we do if it is not done.



git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@85 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-05-31 11:19:26 +00:00
manu@netbsd.org dacebcaf20 Optionaly ave the remote IdP entityId in the environment 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@84 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-05-31 11:15:49 +00:00
olavmrk 5b47e8621f Add script: mellon_create_metadata.sh 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@80 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-02-05 14:31:02 +00:00
olavmrk 0b42f99eeb Some README fixes. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@79 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2010-02-05 14:30:57 +00:00
olavmrk ba209131ce Version 0.2.6 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@78 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-12-21 14:06:29 +00:00
olavmrk 60eeceeff1 Fix warning about unused variable in am_handle_metadata. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@77 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-12-21 14:06:22 +00:00
olavmrk ab3b35fe38 Remove unnecessary code from session creation code. 
This patch fixes a spurious warning about an uninitialized
variable by removing the code path that the compiler assumed
could lead to the variable being uninitialized.

git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@76 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-12-21 14:06:18 +00:00
olavmrk d1b4bafd3e Fix uninitialized variable in repost handler. 
This bug could lead to XSS or remote DOS, depending on the compiler.

Thanks to Benjamin Dauvergne for reporting this bug.

git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@75 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-12-21 14:06:14 +00:00
olavmrk 0984ec3b5a MellonSPPrivateKeyFile is not optional. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@74 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-30 12:15:31 +00:00
olavmrk 27b785f0a6 Version 0.2.5 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@73 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-16 09:20:06 +00:00
manu@netbsd.org 5e354cdb4b Require a session for accessing the repost endpoint 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@72 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-13 15:22:10 +00:00
manu@netbsd.org 53e2ac5d74 Off-by one bug that caused malfunction when replaying a POST request 
containing an empty filed such as 
<input type="hidden" name="foo" value=""/>

It was reposted as
<input type="hidden" name="foo" value="
"/>




git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@71 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-13 15:02:24 +00:00
olavmrk af7788d213 Fix some warnings due to wrong datatype in format string. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@70 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-11 13:33:51 +00:00
olavmrk 93acb3920d Make sure that redirect URLs doesn't contain control characters. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@69 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-11 13:33:45 +00:00
manu@netbsd.org 140c264546 Support replay of multipart/form-data POST requests 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@68 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-11 13:26:15 +00:00
manu@netbsd.org a57a065dcf Replay POST requets after been sent to the IdP 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@67 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-11-09 13:46:28 +00:00
olavmrk 153be7af6a Version 0.2.4 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@66 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-11 13:52:06 +00:00
manu@netbsd.org e742d09273 Do not ever send Cache-Control: no-cahche to IE, as it breaks file 
downloads.


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@65 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-11 13:19:21 +00:00
olavmrk 2cbea5f12f Disable local session when logout starts. 
Mark the local session as logged out as soon as logout starts, in case
the IdP doesn't respond for some reason.

git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@64 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-10 12:38:08 +00:00
olavmrk de99ba9cee Version 0.2.3 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@63 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-07 12:57:02 +00:00
olavmrk 85d38197f3 Add contributors-section to readme. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@62 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-07 12:56:51 +00:00
olavmrk 43551bd5dc Properly calculate session expiration. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@61 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-07 12:56:44 +00:00
olavmrk e3d04c6748 Change apr_uintptr_t to apr_size_t. 
Older versions of APR does not define apr_uintptr_t. apr_size_t should
be more or less equivalent in this place.

git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@60 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-07 12:56:37 +00:00
olavmrk 4cc896f711 Update debian package version. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@59 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-08-07 12:56:29 +00:00
manu@netbsd.org 73aa2c272b Bump to 0.2.2 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@58 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-15 14:10:23 +00:00
manu@netbsd.org 24efb3749a Add MellonOrganization(Name|DisplayName|URL) for filling the 
<Organization> element of autogenerated metadata


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@57 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-15 13:33:34 +00:00
olavmrk dd1279884d Update am_getfile to use apr_file_read_full. 
This chages am_getfile to use apr_file_read_full instead of
apr_file_read to avoid a potential problem if a signal is received
while reading the file data. A signal could cause the apr_file_read to
return less than the requested number of bytes.

git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@56 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-14 20:08:10 +00:00
manu@netbsd.org b51919cb81 Strip "-----BEGIN CERTIFICATE-----", "-----END CERTIFICATE-----", and any 
non graphic character (space, CR) from the certificate presented in 
autogenerated metadata.


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@55 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-14 18:01:58 +00:00
manu@netbsd.org 1155e84dbb When generating metadata, strip leading and trailing content around the 
certificate, as it will confuse XML parsers if it contains [<>&].


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@54 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-06 10:09:22 +00:00
manu@netbsd.org b70447345f Bump to 0.2.1 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@53 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-05 20:17:14 +00:00
manu@netbsd.org 39cde796f8 Doc update 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@52 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-05 20:16:27 +00:00
manu@netbsd.org 93244e8d13 Add a MellonSamlResponseDump option to dump the SAML authentication response in 
the environement


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@51 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-06-01 20:43:17 +00:00
manu@netbsd.org 972edbdc4e Add MellonSessionDump option, to make the session available in the environment 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@50 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-25 20:48:46 +00:00
manu@netbsd.org 2d90322d99 Add support for IdP initiated SOAP single logout. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@49 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-15 08:57:03 +00:00
manu@netbsd.org 8ab3a6a7e3 typo 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@48 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-13 07:35:03 +00:00
olavmrk f951c9b666 Version 0.2.0. 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@47 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-13 06:44:04 +00:00
manu@netbsd.org 15fc294170 Documentation update 
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@46 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-12 16:20:08 +00:00
manu@netbsd.org 6505b69077 Fix mutex leak on NetBSD: APR takes care of destroying mutex and shared 
memory stored in pools. By doing it in a cleanup hook, we do it twice. 
NetBSD's libpthread detects that and kills apache, preventing subsequent
mutexes cleanups. Removing the cleanup hook fixes the leak.



git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@45 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-12 15:32:04 +00:00
manu@netbsd.org 8837d24fd8 - Support for multiple IdP 
- IdP discovery service
- add a dimple built-in IdP discovery mechanism: send HTTP GET on ProviderID
  URL. If we get HTTP 200, the IdP is selected


git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@44 a716ebb1-153a-0410-b759-cfb97c6a1b53
 2009-05-12 15:28:49 +00:00