Update files for release 2.3.1
This commit is contained in:
parent
b1f6b7e0ed
commit
9af598f85c
259
ChangeLog
259
ChangeLog
|
@ -1,3 +1,262 @@
|
|||
2010-09-07 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* configure.ac, lasso/saml-2.0/profile.c:
|
||||
[SAMLv2] when no artifact message is present, still return a success
|
||||
status
|
||||
|
||||
It is mandated by the specification.
|
||||
|
||||
2010-09-06 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* tests/integration/saml2/__init__.py:
|
||||
[Tests integration] fix configuration variable name
|
||||
|
||||
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/id-ff/provider.c:
|
||||
[Core] fix memory leak in lasso_endpoint_free
|
||||
|
||||
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/id-ff/provider.c, lasso/saml-2.0/provider.c:
|
||||
[ID-FFv1.2&SAMLv2] add more warning for failure to load metadata file
|
||||
|
||||
Report detailf of the failure through warning log.
|
||||
|
||||
2010-09-03 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/profile.c, lasso/xml/strings.h:
|
||||
[SAMLv2] when failing to recreate the content for the ArtefactResponse set a lasso specific status code
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/profile.c:
|
||||
[SAMLv2] change the way content is stored and loaded for the
|
||||
HTTP-Artifact binding
|
||||
|
||||
Previously content was stored as the result of lasso_node_dump method
|
||||
then reloaded, and then serialized again as part of the
|
||||
ArtifactResponse message. lasso_node_dump was ignoring all hint to
|
||||
sign node, but keeping the needed parameters around. That's not what
|
||||
must be done, the signature should happen at the generation of the
|
||||
artifact and the result must manipulated as is (i.e. XML content) and
|
||||
never moved back to the land of LassoNode objects.
|
||||
|
||||
Now the content is:
|
||||
- first removed of any signature at the message level, because the
|
||||
ArtifactResponse will take care of this, (any signature under this
|
||||
level (like at the assertion) is kept),
|
||||
- serialized using lasso_node_export_to_xml,
|
||||
- reloaded using lasso_xml_parse_memory,
|
||||
- and put into the ArtifactResponse using a
|
||||
lasso_misc_text_node_new_with_xml_node.
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/profile.c, lasso/saml-2.0/profileprivate.h:
|
||||
[SAMLv2] make lasso_saml20_profile_generate_artifact a static function
|
||||
|
||||
It is only used in lasso/saml-2.0/profile.c anyway.
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/xml/xml.c:
|
||||
[Core] load signature parameters
|
||||
|
||||
Generic signature parameters (attached as qdata to nodes) is now
|
||||
reloaded when initializing a node from XML for a node type with a
|
||||
signature snippet in its metadatas.
|
||||
|
||||
It fixes the problematic usage of ciphered private keys with the
|
||||
HTTP-Artifact binding (which needs to keep a copy of the AuthnResponse
|
||||
around and to sign it later).
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/xml/xml.c:
|
||||
[Core] add private function to read an integer attribute
|
||||
|
||||
This function does integer parsing and range checks, it returns TRUE if
|
||||
all goes well.
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/xml/tools.c, lasso/xml/xml.h:
|
||||
[Core] add LAST enum values to LassoSignatureMethod and
|
||||
LassoSignatureType enumerations
|
||||
|
||||
It helps making range checks.
|
||||
|
||||
2010-09-01 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* bindings/java/lang.py, bindings/perl/lang.py,
|
||||
bindings/php5/wrapper_source.py, bindings/python/lang.py,
|
||||
lasso/xml/strings.h:
|
||||
[Strings] add string constant for the internal XML attributes used in
|
||||
dumps
|
||||
|
||||
Add string constants for signature method, signature type, private key
|
||||
(file path or content), private key password and certificate (file
|
||||
path or content).
|
||||
|
||||
Add cast for xmlChar constant strings definition in python bindings,
|
||||
it assumed all constant strings were char*.
|
||||
|
||||
2010-08-31 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso.doap:
|
||||
[DOAP] fix typos
|
||||
|
||||
Tags were badly formatted.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/login.c:
|
||||
[SAMLv2] mark Redirect binding as an invalid binding for return AuthnResponse
|
||||
|
||||
This is really not supported by the SAMLv2 protocol.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/login.c:
|
||||
[SAMLv2] fix string in comment
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/login.c:
|
||||
[SAMLv2] replace use of lasso_provider_get_default_name_id_format with direct use of lasso_provider_get_metadata_one_for_role
|
||||
|
||||
The first is trying to use provider->role to know which kind of role
|
||||
descriptor to lookup, but for the server object this field is 0 and
|
||||
when building authn request we know that we want our default
|
||||
NameIDFormat for the SP sso descriptor.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/provider.c:
|
||||
[SAMLv2] rebuild specialized LassoProvider methods upon new endpoints storage
|
||||
|
||||
The new way of storing endpoints allows to keep ordering between
|
||||
endpoints with respect to the order of the index and isDefault field
|
||||
for indexed endpoint type, and to the XML node orders for other
|
||||
endpoints.
|
||||
|
||||
It also simplifies the code.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/id-ff/provider.c:
|
||||
[Core] add destroy code for new private field endpoints
|
||||
|
||||
The contained string must be disallocated if the object is destroyed.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/id-ff/providerprivate.h:
|
||||
[Core] add structure to store endpoints type for metadata files
|
||||
|
||||
This new C structure will allow to filter ID-FFv1.2 and SAMLv2
|
||||
endpoints more easily.
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/xml/xml.c:
|
||||
[XML] use strtol instead of atoi to parse XSchema integers
|
||||
|
||||
This commit also reject negative integers from being parsed (all
|
||||
integers in SAMLv2 and ID-FFv1.2 schemas are positive integers).
|
||||
|
||||
2010-08-25 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/saml-2.0/login.c:
|
||||
[SAMLv2] when AuthnRequest contains invalid attributes returns
|
||||
INVALID_REQUEST not NO_DEFAULT_ENDPOINT
|
||||
|
||||
This is the right status to return.
|
||||
|
||||
2010-08-05 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* lasso/id-ff/provider.h:
|
||||
[Core] fix change of enumeration value
|
||||
|
||||
This change broke the API, revert it.
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/web/index.xml:
|
||||
[Website] update download link on front page
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/templates/base.ezt:
|
||||
[Website] fix typos
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/templates/base.ezt, website/web/download/index.xml:
|
||||
[Website] fix source and download links
|
||||
|
||||
The source repository is now the git repository on dev.entrouvert.org.
|
||||
Latest source release is 2.3.0. And git browser is included in our
|
||||
redmine.
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@lupin.entrouvert.com>
|
||||
|
||||
* website/templates/base.ezt:
|
||||
[Website] change position of Download block in right bar
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@lupin.entrouvert.com>
|
||||
|
||||
* website/convert-to-static.py:
|
||||
[Website] in convert-to-static.py, work around errors in build logs
|
||||
|
||||
If Build() constructor fails, keep going.
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/web/news/15-release-2.3.0.xml:
|
||||
[Website] fix wrong structure for the news file about release 2.3.0
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/convert-to-static.py:
|
||||
[Website] import convert-to-static.py modification from lupin
|
||||
|
||||
2010-07-27 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/web/news/15-release-2.3.0.xml:
|
||||
[Website] add news file aboute release 2.3.0
|
||||
|
||||
2010-07-22 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/web/download/index.xml:
|
||||
[Website] fix non escaped ampersand
|
||||
|
||||
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* configure.ac:
|
||||
[Release] update libtool version
|
||||
|
||||
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* website/web/download/index.xml:
|
||||
[Website] update download links
|
||||
|
||||
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* NEWS, configure.ac, lasso.doap, website/web/doap.rdf:
|
||||
[Release] Update version number from 2.3 to 2.3.0
|
||||
|
||||
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* NEWS:
|
||||
[Release] update release date in NEWS file
|
||||
|
||||
2010-07-21 Benjamin Dauvergne <bdauvergne@entrouvert.com>
|
||||
|
||||
* ChangeLog:
|
||||
[Release] update ChangeLog
|
||||
|
||||
2010-07-21 17:55 bdauvergne
|
||||
|
||||
* NEWS, abi/abi-2.3, configure.ac, lasso.doap, website/templates/base.ezt,
|
||||
|
|
21
NEWS
21
NEWS
|
@ -1,8 +1,27 @@
|
|||
NEWS
|
||||
====
|
||||
|
||||
2.3.1 - September 9th 2010
|
||||
--------------------------
|
||||
|
||||
31 commits, 23 files changed, 523 insertions, 356 deletions
|
||||
|
||||
* An ABI breakage was introduced in 2.3.0 with change of value for enumeration
|
||||
values LASSO_PROVIDER_ROLE_SP and LASSO_PROVIDER_ROLE_IDP, it breaked code
|
||||
compiled with previous version and dumps of server objects. This release fix
|
||||
it.
|
||||
* SAMLv2 handling of the artifact binding for the WebSSO profile is now
|
||||
simpler, no more dumping of the response nodes and signing at the artifact
|
||||
building time, the final response is signed when the artifact is generated
|
||||
and when unserialized later it is only manipulated as XML for not breaking
|
||||
the signature. It fixes usage of ciphered private keys with the
|
||||
HTTP-Artifact binding.
|
||||
* SAMLv2 internal storage of endpoints was modified to better keep the
|
||||
ordering between endpoints, which is espacially important for
|
||||
AssertionConsumerService endpoints and difficult to implement well.
|
||||
|
||||
2.3.0 - July 21th 2010
|
||||
--------------------
|
||||
----------------------
|
||||
|
||||
391 commits, 332 files changed, 13919 insertions, 7137 deletions
|
||||
|
||||
|
|
File diff suppressed because it is too large
Load Diff
|
@ -184,7 +184,7 @@ dnl - interfaces removed -> AGE = 0
|
|||
# m = a
|
||||
# r = r
|
||||
current=`expr $VERSION_MAJOR + $VERSION_MINOR`
|
||||
LASSO_VERSION_INFO="11:0:8"
|
||||
LASSO_VERSION_INFO="12:0:8"
|
||||
AC_SUBST(LASSO_VERSION_INFO)
|
||||
|
||||
dnl Compute the minimal supported ABI version for Win32 scripts and resources files.
|
||||
|
|
|
@ -61,6 +61,10 @@
|
|||
</SVNRepository>
|
||||
</repository>
|
||||
<release>
|
||||
<Version>
|
||||
<created>2010-09-07</created>
|
||||
<revision>2.3.1</revision>
|
||||
</Version>
|
||||
<Version>
|
||||
<created>2010-07-21</created>
|
||||
<revision>2.3.0</revision>
|
||||
|
|
|
@ -57,8 +57,8 @@
|
|||
<div id="download">
|
||||
<h2>Download</h2>
|
||||
<p>
|
||||
The most recent version of Lasso is <strong>2.3</strong> and was
|
||||
release on July 21th 2010.
|
||||
The most recent version of Lasso is <strong>2.3.1</strong> and was
|
||||
release on Septembre 9th 2010.
|
||||
</p>
|
||||
<h3>Binary packages</h3>
|
||||
<p>
|
||||
|
@ -67,7 +67,7 @@
|
|||
</p>
|
||||
<h3>Source</h3>
|
||||
<p>
|
||||
<li><a href="http://labs.libre-entreprise.org/frs/download.php/807/lasso-2.3.0.tar.gz">.tar.gz</a></li>
|
||||
<li><a href="https://dev.entrouvert.org/attachments/download/12/lasso-2.3.1.tar.gz">.tar.gz</a></li>
|
||||
<li><a href="http://dev.entrouvert.org/git/lasso.git">Git repository : http://dev.entrouvert.org/git/lasso.git</a></li>
|
||||
<li><a href="https://dev.entrouvert.org/projects/lasso/repository">Browse git repository</a></li>
|
||||
</p>
|
||||
|
|
|
@ -1,4 +1,4 @@
|
|||
<Project
|
||||
<Project
|
||||
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
|
||||
xmlns:rdfs="http://www.w3.org/2000/01/rdf-schema#"
|
||||
xmlns="http://usefulinc.com/ns/doap#"
|
||||
|
@ -29,12 +29,12 @@
|
|||
<implements>
|
||||
<Specification rdf:about="http://www.projectliberty.org/liberty/content/download/1266/8160/file/liberty-idff-1.2-20050520.zip">
|
||||
<rdfs:label>Liberty Alliance ID-FF 1.2</rdfs:label>
|
||||
</Specification
|
||||
</Specification>
|
||||
</implements>
|
||||
<implements>
|
||||
<Specification rdf:about="http://docs.oasis-open.org/security/saml/v2.0/saml-2.0-os.zip">
|
||||
<rdfs:label>OASIS SAML 2.0</rdfs:label>
|
||||
</Specification
|
||||
</Specification>
|
||||
</implements>
|
||||
<maintainer>
|
||||
<foaf:Person>
|
||||
|
@ -61,6 +61,10 @@
|
|||
</SVNRepository>
|
||||
</repository>
|
||||
<release>
|
||||
<Version>
|
||||
<created>2010-09-07</created>
|
||||
<revision>2.3.1</revision>
|
||||
</Version>
|
||||
<Version>
|
||||
<created>2010-07-21</created>
|
||||
<revision>2.3.0</revision>
|
||||
|
|
Loading…
Reference in New Issue