Thomas CHEMINEAU
|
aac04dabdc
|
SAML: print information to user if many SP to logout throught HTTP-Redirect or HTTP-Post
|
2010-04-23 16:26:23 +00:00 |
|
Thomas CHEMINEAU
|
c2b642f172
|
SAML: continue work on sending logout request for all SP when an SP initiate a logout request
|
2010-04-23 15:18:08 +00:00 |
|
Thomas CHEMINEAU
|
cd8b59998b
|
SAML: first work on dispatching logout requests to SP during IDP SLO process
|
2010-04-22 17:01:37 +00:00 |
|
Thomas CHEMINEAU
|
c387e47e4f
|
SAML: retrieve session to be deleted then during a SLO initiate by a SP (maj lasso)
|
2010-04-22 13:00:32 +00:00 |
|
Thomas CHEMINEAU
|
8e08663576
|
SAML: no need to search for a valid session, when we are into issuerForAuthUser, we already have a valid one
|
2010-04-21 16:54:05 +00:00 |
|
Thomas CHEMINEAU
|
0eba588385
|
SAML: now delete session when logout request for authenticated user is correct
|
2010-04-20 15:49:48 +00:00 |
|
Thomas CHEMINEAU
|
6bfdad2d0b
|
SAML: manage logout into issuerForAuthUser
|
2010-04-20 15:31:21 +00:00 |
|
Thomas CHEMINEAU
|
005037df8c
|
SAML: first implementation of SLO initiated by a SP
|
2010-04-20 10:04:34 +00:00 |
|
Clément Oudot
|
70a214b9e0
|
SAML:
* Use Lasso method to get OneTimeUse flag
* Use Session _utime to calculate assertion NotOnOrAfter date
|
2010-04-16 13:38:43 +00:00 |
|
Clément Oudot
|
95b28956fe
|
SAML: add methods to disable signature verification (tests in progress)
|
2010-04-16 10:13:20 +00:00 |
|
Clément Oudot
|
a9cfdb9a64
|
SAML: mandatory attributes are now set in authentication response attribute statement
|
2010-04-16 08:55:56 +00:00 |
|
Clément Oudot
|
99b4c7fb72
|
SAML: attributes in authn response (work in progress)
|
2010-04-15 15:40:07 +00:00 |
|
Clément Oudot
|
4379adc014
|
SAML: reformate SP list to use EntityID as primary key
|
2010-04-15 14:42:17 +00:00 |
|
Clément Oudot
|
fbe50de653
|
* Better log of what is registered in session
* Control whatToTrace parameter before logging into Apache
|
2010-04-15 13:46:45 +00:00 |
|
Clément Oudot
|
d9c4b44c4b
|
Add multiValuesSeparator configuration parameter
|
2010-04-15 11:15:36 +00:00 |
|
Clément Oudot
|
ebf2deae28
|
SAML: SSL authentication context is TLSClient and not X509
|
2010-04-15 09:06:53 +00:00 |
|
Clément Oudot
|
457430f2f7
|
SAML: map authenticationLevel and authn context
|
2010-04-14 16:22:55 +00:00 |
|
Xavier Guimard
|
799b643949
|
$ENV not taken in acount in macros
|
2010-04-14 16:13:24 +00:00 |
|
Clément Oudot
|
c4e1379452
|
* make tidy
* Manage authenticationLevel in all authentication backends
|
2010-04-14 15:37:57 +00:00 |
|
Clément Oudot
|
756ca82484
|
SAML: NameID generation (work in progress)
|
2010-04-14 11:14:24 +00:00 |
|
Clément Oudot
|
bc21f58b46
|
SAML: correct a bug when trying to update a newly created session (cookie not already set)
|
2010-04-12 15:42:38 +00:00 |
|
Clément Oudot
|
2406d832e9
|
SAML: manage Lasso session in artifacts
|
2010-04-12 15:03:54 +00:00 |
|
Clément Oudot
|
ea24dc314e
|
Portal: updateSession can now take session id as parameter
|
2010-04-12 13:50:42 +00:00 |
|
Clément Oudot
|
ae66b57881
|
SAML: load and store Lasso Identity and Session
|
2010-04-12 13:23:22 +00:00 |
|
Clément Oudot
|
91e1419f57
|
SAML: artifact resolution response in SP and IDP
|
2010-04-12 09:09:53 +00:00 |
|
Clément Oudot
|
ce1e5840fb
|
SAML: artifact response is now working
|
2010-04-12 08:26:18 +00:00 |
|
Clément Oudot
|
0ae2585a97
|
SAML: manage artifact (work in progess)
|
2010-04-09 16:42:50 +00:00 |
|
Clément Oudot
|
7fef157210
|
SAML: possibility to configure a different storage for SAML objects (samlStorage) than sessions storage (globalStorage)
|
2010-04-09 13:27:54 +00:00 |
|
Clément Oudot
|
46808d3f78
|
SAML: manage artifact (work in progess)
|
2010-04-08 16:28:10 +00:00 |
|
Clément Oudot
|
9bb7adb3c3
|
SAML: catch artefact resolution URL
|
2010-04-08 11:03:53 +00:00 |
|
Clément Oudot
|
e34c8409b1
|
SAML: escape URL strings in regexp
|
2010-04-08 10:16:13 +00:00 |
|
Clément Oudot
|
fb9f964515
|
SAML: move use POSIX from AuthSAML to _SAML
|
2010-04-08 09:43:28 +00:00 |
|
Clément Oudot
|
cdaea23ac5
|
SAML: create methods to convert timestamp and SAML2 dates, and set all dates in assertion created by IDP
|
2010-04-08 09:39:53 +00:00 |
|
Clément Oudot
|
89bf4a6630
|
SAML: build assertion
|
2010-04-07 16:37:23 +00:00 |
|
Clément Oudot
|
ecf5612e4f
|
SAML:
* Build artifact or complete SSO reponse message
* Send SSO response message
* Correct a bug when loading relayState in POST fields
|
2010-04-07 15:14:17 +00:00 |
|
Clément Oudot
|
f9e8ce7092
|
SAML: validate request message
|
2010-04-07 12:27:50 +00:00 |
|
Clément Oudot
|
7859ba292a
|
SAML: trust hidden fields when they are present
|
2010-04-07 10:11:21 +00:00 |
|
Thomas CHEMINEAU
|
341f9f944f
|
SAML: first work on issuerForAuthUser into IssuerDBSAML.pm
|
2010-04-02 16:19:10 +00:00 |
|
Thomas CHEMINEAU
|
0974c128ec
|
SAML: fix a little bug
|
2010-04-02 15:34:44 +00:00 |
|
Thomas CHEMINEAU
|
7202a6651f
|
SAML: manage hidden values for SAML authentication request
|
2010-04-02 15:28:29 +00:00 |
|
Clément Oudot
|
119386dca7
|
SAML: use checkMessage in AuthSAML
|
2010-04-02 14:47:17 +00:00 |
|
Clément Oudot
|
e21b4c936a
|
SAML: intercept artefact resolution URL in SP
|
2010-04-02 11:41:44 +00:00 |
|
Thomas CHEMINEAU
|
fa039d2114
|
Store hidden informations in forms
* SAML: store SAMLRequest in IssuerDBSAML, just before to redirect to IDP
* Simple: add functions to manage hidden values for forms
|
2010-04-02 09:17:02 +00:00 |
|
Clément Oudot
|
f87d6b9b3d
|
SAML: IDP requestedAuthnContext option
|
2010-04-01 16:32:51 +00:00 |
|
Clément Oudot
|
a11caf800f
|
SAML: IDP isPassive option
|
2010-04-01 14:40:29 +00:00 |
|
Clément Oudot
|
bb86139ce4
|
SAML: work on SSO/SLO signature options
|
2010-04-01 14:18:37 +00:00 |
|
Clément Oudot
|
6d505c9468
|
SAML: IDP option to validate SSO response signature -not working now
|
2010-04-01 12:51:32 +00:00 |
|
Clément Oudot
|
70f853e681
|
SAML: IDP option to sign SSO requests
|
2010-04-01 09:55:33 +00:00 |
|
Clément Oudot
|
7f91ef3c83
|
SAML: was set too late
|
2010-03-26 16:47:17 +00:00 |
|
Thomas CHEMINEAU
|
ba6bb76549
|
SAML:
- Move part of the code into _SAML.pm so that it could be reused;
- Create the method checkMessage that check SAML requests and responses.
|
2010-03-26 16:02:27 +00:00 |
|