entrouvert
/
simplesamlphp
Archived
17
0
Fork 0
Code Issues Pull Requests Releases Activity
3,187 Commits 2 Branches 0 Tags 8.8 MiB
Commit Graph

3187 Commits

Author SHA1 Message Date
olavmrk 3b84eb2632 Fix header set after HTML output. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3192 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-16 09:11:57 +00:00
olavmrk 4072cd1e35 saml:SP: Fix metadata generated for HoK profile. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3191 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-16 08:51:04 +00:00
jaimepc@gmail.com c508292cd0 Add support for AuthnRequestsSigned and WantAssertionsSigned when generating SSP metadata from a SPSSODescriptor. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3190 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-15 13:21:13 +00:00
jaimepc@gmail.com 998ab5e82f The issuer of an AuthnResponse is now validated to check if we get the response from the same entity ID we sent the request to. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3189 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-15 10:36:12 +00:00
jaimepc@gmail.com 356590c1c9 require_once() replaced with require() in the XHTML template system as requested in issue #385. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3188 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-12 11:15:06 +00:00
comel.ah 50ac606c14 authtwitter: update Twitter API endpoint for version 1.1 (issue 517). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3187 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-11 12:28:19 +00:00
jaimepc@gmail.com 5735db42b4 Fixed a bug on ArtifactResolutionService introduced by a previous commit on new SHA signatures support. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3186 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-09 10:31:13 +00:00
jaimepc@gmail.com fb80455dd8 Added support for RegistrationInfo element in SAML 2.0 metadata. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3185 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-05 11:57:30 +00:00
olavmrk 452f68e8da smartnameattribute: Deprecate filter. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3184 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-03 05:55:25 +00:00
olavmrk c8d24ac02e smartattributes: Add SmartName filter to this module. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3183 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-03 05:55:12 +00:00
olavmrk 4d6cfb64f2 smartattributes: Add missing default-disable file. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3182 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-03 05:13:59 +00:00
jaimepc@gmail.com 02f386487b Support for RSA_SHA256, RSA_SHA384 and RSA_SHA512 in HTTP Redirect binding. Signature algorithm can now be set also in the remote IdP metadata, with more priority than the one specified in hosted SP metadata. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3181 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-01 14:17:09 +00:00
olavmrk a5924968a9 New filter: smartattributes:SmartID 
Thanks to Dick Visser for implementing it!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3180 44740490-163a-0410-bde0-09ae8108e29a
 2012-10-01 10:23:46 +00:00
olavmrk 0fa8b0d3c0 UserPass(Org)Base: Fix error propagation in UserPass(Org)Base authentication sources. 
Thansk to Thijs Kinkhorst for indentifying the problem!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3179 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-28 09:40:03 +00:00
olavmrk 1a27ea749b Change the configuration examples to use STARTTLS when connecting to LDAP servers. 
Thanks to Thijs Kinkhorst for providing this patch!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3178 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-28 09:14:49 +00:00
olavmrk 1eb4408cea Documentation fixes. 
Thanks to Thijs Kinkhorst for providing this patch!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3177 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-28 09:14:39 +00:00
jaimepc@gmail.com 511c2e45ac Final 1.10.0 release. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3176 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-25 10:15:16 +00:00
jaimepc@gmail.com 480e43d463 Updated documentation for radius module. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3173 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-25 09:19:25 +00:00
jaimepc@gmail.com 82eda7ed01 Updated documentation for 1.10 release. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3172 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-25 09:19:15 +00:00
jaimepc@gmail.com b8fdd74d43 Fix for compatibility with PHP versions greater or equal to 5.4.x. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3166 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-20 10:18:54 +00:00
jaimepc@gmail.com a640a43a12 Fixed typo in modules/saml/lib/Message.php, addSign(). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3165 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-20 10:18:45 +00:00
jaimepc@gmail.com 15a66c6465 Added support for RSA-SHA256, RSA-SHA384 and RSA-SHA512 signature algorithms. New hosted IdP metadata option 'signature.algorithm' to configure this, defaults to SHA1 for backwards compatibility. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3164 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-20 09:12:13 +00:00
olavmrk 0a91f0937b Add Serbian translation. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3163 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-14 10:53:11 +00:00
olavmrk 62346b8344 Translation update. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3162 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-14 10:51:41 +00:00
olavmrk 18c00ac431 SAML2_HTTPRedirect: Fix misspelling of "Exception". 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3161 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-13 08:30:37 +00:00
olavmrk 8c2b942611 multiauth: Fix bug that breaks compatibility with old IE versions. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3160 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-13 08:12:12 +00:00
jaimepc@gmail.com d6f759fdfb Module added for PAPI protocol support, as requested in issue #118. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3159 44740490-163a-0410-bde0-09ae8108e29a
 2012-09-11 10:39:59 +00:00
olavmrk 7d2dd8b6af consent: New option: showNoConsentAboutService 
Since the "about service"-link takes the user away from the IdP, the
user will still have an session on the IdP. This option allows us to
disable that link.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3158 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-30 11:39:38 +00:00
olavmrk 308aef4f5d consent: Add logout link to no consent page. 
When the user reaches the consent page, they are logged in, but there
was no way to log out from that page. This patch attempts to solve that
problem.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3157 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-30 11:39:17 +00:00
jaimepc@gmail.com 144dcc559c Changelog update for 1.10. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3155 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-29 09:33:58 +00:00
jaimepc@gmail.com 2a53a3a07c Changelog for 1.9.2. 
Merged into trunk from r3150.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3151 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-29 09:07:40 +00:00
jaimepc@gmail.com 47225325db Removed .gitignore file. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3148 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-28 08:34:17 +00:00
jaimepc@gmail.com 17fddf92a7 Fix for username set from attributes received. Updated documentation. Port made optional again. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3147 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-28 08:34:09 +00:00
jaimepc@gmail.com 0df8944ca2 Multiple servers support in radius module. Implies new configuration options (but is backwards compatible). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3146 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-27 13:35:03 +00:00
jaimepc@gmail.com 82225f5c91 Fix for issue #509. Check symmetric key length once decrypted, to make sure it is the same size as expected. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3145 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-24 12:56:41 +00:00
olavmrk 4c06f7e31e Add script that is used to build releases. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3144 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 12:37:27 +00:00
olavmrk 5d113d5201 Changelog and upgrade notes for version 1.10. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3141 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 10:49:21 +00:00
olavmrk d8f4425f59 Dictionary update. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3140 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 10:49:06 +00:00
olavmrk 46a0caf2fe saml: Add "encryption.blacklisted-algorithms"-option. 
This option allows us to disable some encryption algorithms.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3139 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 10:48:45 +00:00
olavmrk 980067c7d9 SAML2: Add algorithm blacklist support. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3138 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 10:48:28 +00:00
olavmrk 45926a0be2 Change encryption to use the rsa-oaep-mgf1p key padding. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3137 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 10:48:17 +00:00
olavmrk 155f5b71e6 Changelog for 1.9.1. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3133 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 06:21:21 +00:00
olavmrk f5e82c4c6e SAML2_Utils: Fix for attack against PKCS#1 v1.5 described in a new paper. 
See: http://www.nds.rub.de/research/publications/breaking-xml-encryption-pkcs15/

This fix avoids the problems described in that paper by taking two
measures:
- Require that decrypted contents is at least 4 bytes, since that is the
  shortest length of an XML element.
- Generate a (invalid) symmetric key that is deterministic for a given
  encrypted key and private key.

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3132 44740490-163a-0410-bde0-09ae8108e29a
 2012-08-02 06:21:11 +00:00
olavmrk fef94dc438 Remove executable-property from non-executable files. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3131 44740490-163a-0410-bde0-09ae8108e29a
 2012-07-12 10:37:44 +00:00
olavmrk 55f49b76b2 Add holder-of-key profile support to changelog. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3130 44740490-163a-0410-bde0-09ae8108e29a
 2012-07-11 10:52:47 +00:00
olavmrk c9d5402cba shib13: Fix reauthentication bug. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3129 44740490-163a-0410-bde0-09ae8108e29a
 2012-07-06 09:21:42 +00:00
olavmrk a8a3386edb riak: New module which enables storing sessions in Riak. 
Thanks to David Gwynne for implementing this!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3128 44740490-163a-0410-bde0-09ae8108e29a
 2012-06-29 09:21:17 +00:00
olavmrk 525afd9368 docs: Fix typos in documentation about federation configuration. 
Thanks to Brett Bieber for providing this patch!

git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3126 44740490-163a-0410-bde0-09ae8108e29a
 2012-06-28 08:39:33 +00:00
comel.ah e193399698 SimpleSAML_Store_Memcache::set(): expire fix (issue #501). 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3125 44740490-163a-0410-bde0-09ae8108e29a
 2012-06-26 14:41:33 +00:00
olavmrk c8aade9d5c saml: Add support for overriding SAML 2.0 SP authentication request generation. 
git-svn-id: http://simplesamlphp.googlecode.com/svn/trunk@3124 44740490-163a-0410-bde0-09ae8108e29a
 2012-06-22 11:36:57 +00:00