------------------------------------------------------------ revno: 48 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-27 12:09:46 +0100 message: new session handler: auto persistence modified: endpoints/saml2.php exemples/index.php include/lassospkit_config.inc.php include/lassospkit_debug.inc.php include/lassospkit_dummysession.inc.php include/lassospkit_file.inc.php include/lassospkit_generic_session.inc.php include/lassospkit_helper.inc.php include/lassospkit_liberty.inc.php include/lassospkit_saml2.inc.php include/lassospkit_saml_common.inc.php ------------------------------------------------------------ revno: 47 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-27 12:08:53 +0100 message: add rename method for storage backend and nidmanagement modified: include/lassospkit_storage.inc.php ------------------------------------------------------------ revno: 46 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-27 12:08:32 +0100 message: add relaystate for nidmanagement modified: include/lassospkit_utils_session.inc.php ------------------------------------------------------------ revno: 45 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Fri 2008-03-21 16:44:07 +0100 message: * to review modified: endpoints/liberty.php endpoints/saml2.php endpoints/style.css exemples/index.php include/lassospkit_debug.inc.php include/lassospkit_dummysession.inc.php include/lassospkit_helper.inc.php include/lassospkit_liberty.inc.php include/lassospkit_public_api.inc.php include/lassospkit_saml2.inc.php include/lassospkit_saml_common.inc.php include/lassospkit_utils_session.inc.php ------------------------------------------------------------ revno: 44 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Fri 2008-03-21 15:10:50 +0100 message: * add a dummy doc file. added: doc/index.html ------------------------------------------------------------ revno: 43 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Fri 2008-03-21 15:10:14 +0100 message: * debian packaging is working (dpkg-buildpackage -rfakeroot) removed: debian/postinst.ex debian/postrm.ex debian/preinst.ex debian/prerm.ex debian/spkitlasso.doc-base.EX debian/watch.ex added: debian/spkitlasso.doc-base debian/spkitlasso.install debian/spkitlasso.postinst debian/spkitlasso.prerm modified: Makefile debian/dirs debian/rules ------------------------------------------------------------ revno: 42 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-20 17:57:36 +0100 message: * add session_start to endpoint saml2.php * implement initSso and ssoAssertionConsumer endpoint function * exemple/index.php: add url for configuring, reset federation after reading it (in order to keep it alive in the session). * lassospkit_configgen.inc.php: (generateSPMetadata) retrieve the baseUrl config parameter for generating endpoints url. * 2 new classes: LassoSPKitGenericSession and LassoSPKitDummySession, the first is a base class for Lasso Session implementation and the second is a specific class that only use the session object of PHP, should add use of SPPRovidedID to keep the UserID. * LassoSPKitHelper: (restoreDump,saveDumps) change LassoSPKitSession into LassoSPKitGenericSession. (assertionExtractAttributes) change arg name from arr to attributes, arr is already used as a local name. (saveFederation,findFederation) typo forgot "$" before variable profile. (soapCall,postToHost) inline the method from lassospkit_soap.inc.php. rename ProfileSoapCall to SoapCallWithProfile. * lassospkit_soap.inc.php: remove * LassoSPKitLiberty: (__construct) change type of first arg from LassoSPKitSEssion to LassoSPKitGenericSession. * LassoSPKitMetadata: typo, '/' lacking. * lassospkit_public_api.inc.php: - (lassospkit_set_federation) rename $nameid to $federation - add 'domain' arguments to call to setRelayState so that the relay state for sso, slo or defederation are not the same. * LassoSPKitSaml2: when calling ssoCommon add the blob argument. * LassoSPKitSamlCommon: - when creating the server object, use the right path for find idp metadata - renamed LassoHelper to LassoSPKitHelper everywhere - ProfileSoapCall -> SoapCallWithProfile - remove call to clear_status (and the method in LassoSPKitGenericSession class). - (ssoConsumer) simplifed switch on ARTIFACT transport method. - (findFederation,saveFederation): proxy method to forward to the LassoSPKitHelper methods. The LassoSPKitHelper method should eventually disappear also. - change many protected to public and private to protected. - change call to LassoSPKitGenericSession:terminateFederation() into call to changeFederation(???, null). The behaviour should be the same. * LassoSPKitUtilsSession: - add a domain argument to relayState handling. removed: include/lassospkit_soap.inc.php added: include/lassospkit_dummysession.inc.php include/lassospkit_generic_session.inc.php renamed: include/lassospkit_session.inc.php => deprecated.php modified: TODO endpoints/liberty.php endpoints/saml2.php exemples/index.php include/lassospkit_configgen.inc.php include/lassospkit_helper.inc.php include/lassospkit_liberty.inc.php include/lassospkit_metadata.inc.php include/lassospkit_public_api.inc.php include/lassospkit_saml2.inc.php include/lassospkit_saml_common.inc.php include/lassospkit_utils_session.inc.php ------------------------------------------------------------ revno: 41 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-20 14:55:56 +0100 message: * Makefile: add an -f flag to an rm command * TODO update modified: Makefile TODO ------------------------------------------------------------ revno: 40 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-20 14:54:56 +0100 message: * lassospkit_utils_session.inc.php: setRelayState,setFederation,setLastError remove the clearAtShutdown flag from the concerned session key when new value is given. modified: include/lassospkit_utils_session.inc.php ------------------------------------------------------------ revno: 39 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-20 14:48:41 +0100 message: * remove of obsolete private_api.inc.php removed: include/private_api.inc.php ------------------------------------------------------------ revno: 38 committer: bdauvergne@entrouvert.com branch nick: spkitlasso-0.1 timestamp: Thu 2008-03-20 14:32:58 +0100 message: * Complete rework of the lasso spkit: - add new config keys - the configgen now support generation of ID-FF 1.2 metadatas, it selects which kind of metadata to support by looking at the given IdP metadatas. - centralize finding of the datadir in lassospkit_datadir.inc.ph via a function that needs to be rewrittent for any new policy about datadir. - metadata generation is moved inside lasosspkit_metadata.inc.php and now it support ID-FF 1.2 metadatas. - lassospkit_showCode is debug code to show pre-formatted code. - lassospkit_dispatcher.inc.php: contains code to dispatch upon content of PATH_INFO (part of the url after the name of the script) i.e if the scripts is named /xxx/script.php and the accessed url is /xxx/script/coin thent PATH_INFO is '/coin'. Used in the new code of the endpoints. - Remove multiple endpoints: there is just two endpoints/saml2.php and endpoints/liberty.php. Access to different sub-endpoints is dispatched upon content of PATH_INFO, so the SSO assertion consumer for SAML2 is now /endpoints/saml2/ssoAssertion (or /endpoints/saml2.php/ssoAssertion). - Liberty (ID-FF 1.2) and SAML2 implementation share common using the class LassoSPKitSAMLCommon. Non common common is handled via overloading inside each specific class (LassoSPKitSAML2 and LassoSPKitLiberty). - Remove xxx_logged() procedural, use xxx_nameid() == null as an equivalent predicate. - Generation/extraction of keys using openssl is now inside the LassoSPKitUtils class (as static functions). - The new class LassoSPKitUtilsSession handles the communication between the frontend (the procedural API) and the backend (the lasso endpoints) via the PHP session mechanisme ($_SESSION,session_start,etc..). It also handles reset of certain communication variables after usage (the 'error' variable if read will be reseted at the end of current PHP interaction via the finalizer of the LassoSPKitUtilsSession class. It is the case for the properties federation, lastError and relayState that should stay for a unique redirect between frontend and backend. * debianization: there is now Makefile for installation and packaging of zip files. It supports the DESTDIR install parameter. There is also a dummy debian/ directory created using dh_make ans using the cdbs system. removed: .htaccess endpoints/libertymeta.php endpoints/saml2meta.php added: INSTALL Makefile README debian/changelog debian/compat debian/control debian/copyright debian/dirs debian/docs debian/postinst.ex debian/postrm.ex debian/preinst.ex debian/prerm.ex debian/rules debian/spkitlasso.doc-base.EX debian/watch.ex doc/ endpoints/style.css include/lassospkit_lib.inc.php include/lassospkit_metadata.inc.php modified: TODO* endpoints/configure.php* endpoints/liberty.php endpoints/saml2.php exemples/index.php include/lassospkit_config.inc.php include/lassospkit_configgen.inc.php include/lassospkit_datadir.inc.php include/lassospkit_debug.inc.php include/lassospkit_dispatcher.inc.php include/lassospkit_helper.inc.php include/lassospkit_liberty.inc.php include/lassospkit_public_api.inc.php include/lassospkit_saml2.inc.php include/lassospkit_saml_common.inc.php include/lassospkit_session.inc.php include/lassospkit_utils.inc.php include/lassospkit_utils_session.inc.php ------------------------------------------------------------ revno: 37 committer: bdauvergne@entrouvert.com branch nick: spkitlasso timestamp: Fri 2008-03-14 17:21:13 +0100 message: * changed all references from simplelasso to lassospkit. * removed all endpoints, replaced by just two in directory endpoints: saml2.php and liberty.php. * all files are now found in lassospkit_datadir() this function must be rewritten for the different kind of distribution (for debian package it would be /var/lib/lassospkit/$DOMAIN/, but for mono-use on a shared hosting it would be '/data/'. * everything is in flux so do not try to use it. removed: data/ data/.htaccess data/config.php include/.htaccess include/api.php include/configure_helper.php include/debug.php include/file_store.php include/include.php include/mysql_store.php include/private_defines.php include/private_include.php include/simple_config.php include/simple_session.php include/simple_soap.php include/store_interface.php login.php nameid_management_redirect.php nameid_management_soap.php nameid_management_sp.php nameid_management_sp_return.php nameid_management_sp_soap.php slo_redirect.php slo_soap.php slo_sp.php slo_sp_return.php slo_sp_soap.php soap_endpoint.php sso_artifact.php added: debian/ endpoints/ endpoints/liberty.php endpoints/libertymeta.php endpoints/saml2.php endpoints/saml2meta.php include/lassospkit_config.inc.php include/lassospkit_configgen.inc.php include/lassospkit_datadir.inc.php include/lassospkit_debug.inc.php include/lassospkit_defines.inc.php include/lassospkit_dispatcher.inc.php include/lassospkit_file.inc.php include/lassospkit_helper.inc.php include/lassospkit_liberty.inc.php include/lassospkit_mysql.inc.php include/lassospkit_public_api.inc.php include/lassospkit_saml2.inc.php include/lassospkit_saml_common.inc.php include/lassospkit_session.inc.php include/lassospkit_soap.inc.php include/lassospkit_storage.inc.php include/lassospkit_utils.inc.php include/lassospkit_utils_session.inc.php renamed: configure.php => endpoints/configure.php include/private_api.php => include/private_api.inc.php* modified: TODO endpoints/configure.php include/private_api.inc.php* ------------------------------------------------------------ revno: 36 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Thu 2008-03-13 18:52:56 +0100 message: * verify that key exist in $_SESSION modified: include/simple_session.php ------------------------------------------------------------ revno: 35 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Thu 2008-03-13 18:42:01 +0100 message: * change getSession so it functions without session_start. modified: include/simple_session.php ------------------------------------------------------------ revno: 34 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 18:03:41 +0100 message: * typo: Url => URL modified: include/configure_helper.php ------------------------------------------------------------ revno: 33 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:50:13 +0100 message: * typo modified: include/simple_config.php ------------------------------------------------------------ revno: 32 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:49:23 +0100 message: * add quote around define first arg. modified: include/simple_config.php ------------------------------------------------------------ revno: 31 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:47:23 +0100 message: * change file rights to 755. modified: .htaccess* TODO* configure.php* data/.htaccess* data/config.php* exemples/index.php* include/.htaccess* include/api.php* include/configure_helper.php* include/debug.php* include/file_store.php* include/include.php* include/mysql_store.php* include/private_api.php* include/private_defines.php* include/private_include.php* include/simple_config.php* include/simple_session.php* include/simple_soap.php* include/store_interface.php* login.php* nameid_management_redirect.php* nameid_management_soap.php* nameid_management_sp.php* nameid_management_sp_return.php* nameid_management_sp_soap.php* slo_redirect.php* slo_soap.php* slo_sp.php* slo_sp_return.php* slo_sp_soap.php* soap_endpoint.php* sso_artifact.php* ------------------------------------------------------------ revno: 30 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:45:49 +0100 message: * add quotes around constant names. modified: include/private_defines.php ------------------------------------------------------------ revno: 29 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:31:41 +0100 message: * simple_session.php: do not set status when interaction is ok. modified: include/simple_session.php ------------------------------------------------------------ revno: 28 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:31:12 +0100 message: * examples/index.php: add a box to show last status of liberty interactions. modified: exemples/index.php ------------------------------------------------------------ revno: 27 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 14:30:04 +0100 message: * include/api.php: new function simplelasso_status to retrieve the human readable exit status of the last liberty interaction, then reset it. You have to store the return value, because at next call it will be null (because of the resetting). modified: include/api.php ------------------------------------------------------------ revno: 26 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:39:56 +0100 message: * new endpoint implementation for named_id_management. added: nameid_management_redirect.php nameid_management_soap.php nameid_management_sp.php nameid_management_sp_return.php nameid_management_sp_soap.php ------------------------------------------------------------ revno: 25 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:39:16 +0100 message: * renamming and motion of endpoints removed: defederation_redirect.php defederation_soap.php@ defederation_sp.php defederation_sp_return.php defederation_sp_soap.php kind changed: slo_soap.php (symlink => file) modified: soap_endpoint.php ------------------------------------------------------------ revno: 24 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:38:50 +0100 message: * include/private_defines.php: new define for the "create" param of sso endpoints. modified: include/private_defines.php ------------------------------------------------------------ revno: 23 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:38:02 +0100 message: * include/api.php: helper function to set the sessionid inside the global SimpleSession object. modified: include/api.php ------------------------------------------------------------ revno: 22 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:37:07 +0100 message: * include/private_api.php: new funtion to pretty print XML documents. modified: include/private_api.php ------------------------------------------------------------ revno: 21 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:36:36 +0100 message: * include/debug.php: new debug functions. modified: include/debug.php ------------------------------------------------------------ revno: 20 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:36:06 +0100 message: * include/configure_helper.php: rename logout and nameid endpoints. modified: include/configure_helper.php ------------------------------------------------------------ revno: 19 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:27:38 +0100 message: * include/simple_session.php: - new method getServer(), supress simplelasso_init, cache the created Server object. - deletePHPSession(): helper method to delete the php_session, do not regenerate or suppress the session if present. - adds sessionid to the informationss to save - lots of debugging instructions - sso_request_redirect: new create parameter for the allowCreate parameter of the sso request. - logout_receive_response_redirect: better handle error codes returned by processResponseMsg - logout_receive_request_soap,logout_receive_request_redirect: correct bugs "forgot $this". - process_idp_logout_request: do not choke on return error code of validateRequest. - rename defederation_ functions as name_id_managemtn_ functions. - implement process_idp_named_id_management_request modified: include/simple_session.php ------------------------------------------------------------ revno: 18 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:26:40 +0100 message: * login.php: new parameter allowCreate for the sso, set it to true if a user param is present. modified: login.php ------------------------------------------------------------ revno: 17 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:25:27 +0100 message: * slo_sp.php: handler redirection to after slo URL. modified: slo_sp.php ------------------------------------------------------------ revno: 16 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-03-11 13:24:11 +0100 message: * slop_sp_soap.php: handle redirection to the after slo URL. modified: slo_sp_soap.php ------------------------------------------------------------ revno: 15 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Mon 2008-03-03 11:11:01 +0100 message: * exemple/index.php: update * TODO: remove old todos, add new ones modified: TODO exemples/index.php ------------------------------------------------------------ revno: 14 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-29 19:08:06 +0100 message: * file_store.php,store_interface.php: add functions to index on user id the name ids. * simple_session.php: implemented all slo,sso,federation termination methods for saml 2.0 * defederation_redirect.php,defederation_soap.php,defederation_sp.php, defederation_sp_return.php,defederation_sp_soap.php,slo_redirect.php, slo_soap.php,slo_sp.php,slo_sp_return.php,slo_sp_soap.php, soap_endpoint.php: implements end points for all the service profile and bindings. sso, slo and defederation. added: defederation_redirect.php defederation_soap.php@ defederation_sp.php defederation_sp_return.php defederation_sp_soap.php slo_redirect.php slo_soap.php@ slo_sp.php slo_sp_return.php slo_sp_soap.php soap_endpoint.php modified: include/api.php include/configure_helper.php include/file_store.php include/mysql_store.php include/simple_session.php include/store_interface.php ------------------------------------------------------------ revno: 13 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Wed 2008-02-27 17:48:13 +0100 message: * last version of the index.php example file modified: exemples/index.php ------------------------------------------------------------ revno: 12 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Wed 2008-02-27 17:47:50 +0100 message: * add a TODO file added: TODO ------------------------------------------------------------ revno: 11 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Wed 2008-02-27 17:46:35 +0100 message: * Reworked the complete API with PHP objects added: include/configure_helper.php include/debug.php include/simple_config.php include/simple_session.php include/store_interface.php modified: configure.php include/api.php include/file_store.php include/include.php include/mysql_store.php include/private_api.php include/private_defines.php login.php sso_artifact.php ------------------------------------------------------------ revno: 10 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Mon 2008-02-25 18:41:31 +0100 message: * mysql persistence is functionning. modified: configure.php data/config.php exemples/index.php include/file_store.php include/mysql_store.php include/private_api.php sso_artifact.php ------------------------------------------------------------ revno: 9 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Mon 2008-02-25 17:49:43 +0100 message: * implementation of the automatic persitence of association between local username and nameid. added: .htaccess data/ data/.htaccess include/ include/.htaccess include/file_store.php include/mysql_store.php renamed: api.php => include/api.php config.php => data/config.php include.php => include/include.php private_api.php => include/private_api.php private_defines.php => include/private_defines.php private_include.php => include/private_include.php simple_soap.php => include/simple_soap.php modified: configure.php exemples/index.php login.php sso_artifact.php include/api.php data/config.php include/include.php include/private_api.php include/private_defines.php ------------------------------------------------------------ revno: 8 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-22 17:48:30 +0100 message: add a index.php exemple added: exemples/ exemples/index.php ------------------------------------------------------------ revno: 7 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-22 17:47:23 +0100 message: correct bad conditional modified: login.php ------------------------------------------------------------ revno: 6 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-22 17:47:07 +0100 message: same as last log modified: private_api.php ------------------------------------------------------------ revno: 5 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-22 17:46:35 +0100 message: do not show failled attemp to load sp_metadata.xml modified: configure.php ------------------------------------------------------------ revno: 4 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Fri 2008-02-22 15:53:51 +0100 message: * code architecture is setted added: config.php private_api.php private_defines.php private_include.php renamed: config.php => configure.php modified: api.php include.php login.php simple_soap.php sso_artifact.php configure.php ------------------------------------------------------------ revno: 3 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Wed 2008-02-20 17:11:48 +0100 message: * create php files for login and assertion_consumer. * imported soap call function from Damien. added: api.php login.php simple_soap.php sso_artifact.php modified: include.php ------------------------------------------------------------ revno: 2 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-02-19 19:25:26 +0100 message: * current state modified: config.php include.php ------------------------------------------------------------ revno: 1 committer: bdauvergne@entrouvert.com branch nick: simplelassophp timestamp: Tue 2008-02-19 17:50:27 +0100 message: * first commit * config.php wil contain the minimum configuration wizard * include.php contains global constants added: config.php include.php