olavmrk
60a4595c20
debian: Add debug-symbol package.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@96 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-30 14:02:19 +00:00
olavmrk
5ab0f17440
debian: Fix path to README-file in description.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@95 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-30 14:02:14 +00:00
olavmrk
e68154384b
login endpoint
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@94 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-18 11:15:48 +00:00
olavmrk
d5771dc6ea
Refactor out am_send_authn_request from am_auth_new_ticket.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@93 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-18 11:15:44 +00:00
olavmrk
519fd01075
Check whether the metadata files exists before passing them to Lasso.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@92 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:32:04 +00:00
olavmrk
7f9dc4e7ce
mellon_create_metadata.sh: Use hostname as CN during metadata creation.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@91 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:17:51 +00:00
olavmrk
820d5954a2
Fix memory leak on no-cookie error during response processing.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@90 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:17:47 +00:00
olavmrk
79ac69136d
Set the MellonIDP variable to the IdP that we got a response from.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@89 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:17:42 +00:00
olavmrk
542e0eab6a
Add missing session unlock in am_check_uid.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@88 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:17:38 +00:00
olavmrk
4b7651ac29
Display proper error when missing MellonSPMetadataFile.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@87 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-06-17 07:17:34 +00:00
olavmrk
1a8daf22fc
Version 0.2.7
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@86 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-05-31 13:13:49 +00:00
manu@netbsd.org
190c042a2a
Shibboleth 2 interoperability. This is acchieved by increasing the
...
storage for attributes, as OID-named attributes sent by the Shibboleth
IdP consomes quite some space.
There is also a required Destination attribute in AuthnRequest elements.
It is done by trunk version of lasso, but not by any currently released
version, hence we do if it is not done.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@85 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-05-31 11:19:26 +00:00
manu@netbsd.org
dacebcaf20
Optionaly ave the remote IdP entityId in the environment
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@84 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-05-31 11:15:49 +00:00
olavmrk
5b47e8621f
Add script: mellon_create_metadata.sh
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@80 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-02-05 14:31:02 +00:00
olavmrk
0b42f99eeb
Some README fixes.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@79 a716ebb1-153a-0410-b759-cfb97c6a1b53
2010-02-05 14:30:57 +00:00
olavmrk
ba209131ce
Version 0.2.6
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@78 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-12-21 14:06:29 +00:00
olavmrk
60eeceeff1
Fix warning about unused variable in am_handle_metadata.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@77 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-12-21 14:06:22 +00:00
olavmrk
ab3b35fe38
Remove unnecessary code from session creation code.
...
This patch fixes a spurious warning about an uninitialized
variable by removing the code path that the compiler assumed
could lead to the variable being uninitialized.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@76 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-12-21 14:06:18 +00:00
olavmrk
d1b4bafd3e
Fix uninitialized variable in repost handler.
...
This bug could lead to XSS or remote DOS, depending on the compiler.
Thanks to Benjamin Dauvergne for reporting this bug.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@75 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-12-21 14:06:14 +00:00
olavmrk
0984ec3b5a
MellonSPPrivateKeyFile is not optional.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@74 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-30 12:15:31 +00:00
olavmrk
27b785f0a6
Version 0.2.5
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@73 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-16 09:20:06 +00:00
manu@netbsd.org
5e354cdb4b
Require a session for accessing the repost endpoint
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@72 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-13 15:22:10 +00:00
manu@netbsd.org
53e2ac5d74
Off-by one bug that caused malfunction when replaying a POST request
...
containing an empty filed such as
<input type="hidden" name="foo" value=""/>
It was reposted as
<input type="hidden" name="foo" value="
"/>
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@71 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-13 15:02:24 +00:00
olavmrk
af7788d213
Fix some warnings due to wrong datatype in format string.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@70 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-11 13:33:51 +00:00
olavmrk
93acb3920d
Make sure that redirect URLs doesn't contain control characters.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@69 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-11 13:33:45 +00:00
manu@netbsd.org
140c264546
Support replay of multipart/form-data POST requests
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@68 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-11 13:26:15 +00:00
manu@netbsd.org
a57a065dcf
Replay POST requets after been sent to the IdP
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@67 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-11-09 13:46:28 +00:00
olavmrk
153be7af6a
Version 0.2.4
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@66 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-11 13:52:06 +00:00
manu@netbsd.org
e742d09273
Do not ever send Cache-Control: no-cahche to IE, as it breaks file
...
downloads.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@65 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-11 13:19:21 +00:00
olavmrk
2cbea5f12f
Disable local session when logout starts.
...
Mark the local session as logged out as soon as logout starts, in case
the IdP doesn't respond for some reason.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@64 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-10 12:38:08 +00:00
olavmrk
de99ba9cee
Version 0.2.3
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@63 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-07 12:57:02 +00:00
olavmrk
85d38197f3
Add contributors-section to readme.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@62 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-07 12:56:51 +00:00
olavmrk
43551bd5dc
Properly calculate session expiration.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@61 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-07 12:56:44 +00:00
olavmrk
e3d04c6748
Change apr_uintptr_t to apr_size_t.
...
Older versions of APR does not define apr_uintptr_t. apr_size_t should
be more or less equivalent in this place.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@60 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-07 12:56:37 +00:00
olavmrk
4cc896f711
Update debian package version.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@59 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-08-07 12:56:29 +00:00
manu@netbsd.org
73aa2c272b
Bump to 0.2.2
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@58 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-15 14:10:23 +00:00
manu@netbsd.org
24efb3749a
Add MellonOrganization(Name|DisplayName|URL) for filling the
...
<Organization> element of autogenerated metadata
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@57 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-15 13:33:34 +00:00
olavmrk
dd1279884d
Update am_getfile to use apr_file_read_full.
...
This chages am_getfile to use apr_file_read_full instead of
apr_file_read to avoid a potential problem if a signal is received
while reading the file data. A signal could cause the apr_file_read to
return less than the requested number of bytes.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@56 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-14 20:08:10 +00:00
manu@netbsd.org
b51919cb81
Strip "-----BEGIN CERTIFICATE-----", "-----END CERTIFICATE-----", and any
...
non graphic character (space, CR) from the certificate presented in
autogenerated metadata.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@55 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-14 18:01:58 +00:00
manu@netbsd.org
1155e84dbb
When generating metadata, strip leading and trailing content around the
...
certificate, as it will confuse XML parsers if it contains [<>&].
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@54 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-06 10:09:22 +00:00
manu@netbsd.org
b70447345f
Bump to 0.2.1
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@53 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-05 20:17:14 +00:00
manu@netbsd.org
39cde796f8
Doc update
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@52 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-05 20:16:27 +00:00
manu@netbsd.org
93244e8d13
Add a MellonSamlResponseDump option to dump the SAML authentication response in
...
the environement
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@51 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-06-01 20:43:17 +00:00
manu@netbsd.org
972edbdc4e
Add MellonSessionDump option, to make the session available in the environment
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@50 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-25 20:48:46 +00:00
manu@netbsd.org
2d90322d99
Add support for IdP initiated SOAP single logout.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@49 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-15 08:57:03 +00:00
manu@netbsd.org
8ab3a6a7e3
typo
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@48 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-13 07:35:03 +00:00
olavmrk
f951c9b666
Version 0.2.0.
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@47 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-13 06:44:04 +00:00
manu@netbsd.org
15fc294170
Documentation update
...
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@46 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-12 16:20:08 +00:00
manu@netbsd.org
6505b69077
Fix mutex leak on NetBSD: APR takes care of destroying mutex and shared
...
memory stored in pools. By doing it in a cleanup hook, we do it twice.
NetBSD's libpthread detects that and kills apache, preventing subsequent
mutexes cleanups. Removing the cleanup hook fixes the leak.
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@45 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-12 15:32:04 +00:00
manu@netbsd.org
8837d24fd8
- Support for multiple IdP
...
- IdP discovery service
- add a dimple built-in IdP discovery mechanism: send HTTP GET on ProviderID
URL. If we get HTTP 200, the IdP is selected
git-svn-id: https://modmellon.googlecode.com/svn/trunk/mod_mellon2@44 a716ebb1-153a-0410-b759-cfb97c6a1b53
2009-05-12 15:28:49 +00:00