lajoie [Fri, 11 Jan 2008 08:14:54 +0000 (08:14 +0000)]
bump max number of parsers available
remove some left over doctype related settings
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2557
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 11 Jan 2008 07:21:23 +0000 (07:21 +0000)]
Disallow all doctypes. There seems to be no combinations of settings that allow for doctypes to be used without the possibility of explosive memory growth that results in a DoS attack
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2556
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 11 Jan 2008 06:53:37 +0000 (06:53 +0000)]
Significantly decrease number of allowed entity expansion operations
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2555
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 17:06:21 +0000 (17:06 +0000)]
Fix typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2554
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 17:04:35 +0000 (17:04 +0000)]
Allow login.jsp tobe used by either container or IdP managed authentication
Pass in action URL derived from authentication servlet when using IdP managed authn
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2553
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 13:17:25 +0000 (13:17 +0000)]
Down level filter logging messages
Add some logging in AuthN engine
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2552
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:57:07 +0000 (12:57 +0000)]
Don't check cookie domain and path, they aren't sent by the browser
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2551
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:50:23 +0000 (12:50 +0000)]
Don't use domain based cookie
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2550
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:42:51 +0000 (12:42 +0000)]
Bit of code fixup and add some loggin
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2549
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:38:25 +0000 (12:38 +0000)]
fix domain checking when looking for idp session cookie.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2548
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:33:49 +0000 (12:33 +0000)]
Require AuthN engine to set session cookie when it creates a session
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2547
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:22:46 +0000 (12:22 +0000)]
add some logging
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2546
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 12:16:58 +0000 (12:16 +0000)]
pull shib session from HttpSession if it's not in the request
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2545
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:58:23 +0000 (11:58 +0000)]
Pull session from request when creating outbound cookie
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2544
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:56:10 +0000 (11:56 +0000)]
use null safe equality checks
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2543
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:50:08 +0000 (11:50 +0000)]
oopss. forgot to save before last comit
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2542
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:46:27 +0000 (11:46 +0000)]
Bind session to request once authentication is complete
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2541
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:35:51 +0000 (11:35 +0000)]
Fix typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2540
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 11:31:24 +0000 (11:31 +0000)]
Lots of session management cleanup; no longer dependent on container session
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2539
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 08:48:54 +0000 (08:48 +0000)]
remove version number from war file name
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2538
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 08:26:29 +0000 (08:26 +0000)]
clean up example file a bit
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2537
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 08:18:44 +0000 (08:18 +0000)]
Add config for rule required flag
Split out security policy rules for the various profiles
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2536
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 07:14:39 +0000 (07:14 +0000)]
Add SAML 1, 2 unspecified name ID encoders and principal connectors in default config
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2535
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 10 Jan 2008 07:02:28 +0000 (07:02 +0000)]
Add message associated with artifact into resolution response
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2534
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 9 Jan 2008 13:43:42 +0000 (13:43 +0000)]
Comment out most of the examples. The example resolver and filter are now functional, without modification, for an AuthN-only setup.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2533
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 9 Jan 2008 10:15:57 +0000 (10:15 +0000)]
Remove unused decoder
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2532
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 9 Jan 2008 09:59:14 +0000 (09:59 +0000)]
Synch up with artifact map changes
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2531
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 9 Jan 2008 08:00:06 +0000 (08:00 +0000)]
A couple changes so that big ugly config errors are less big (still ugly though ;))
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2530
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 19:30:08 +0000 (19:30 +0000)]
Enable SAML profiles on default endpoint
Set conventional IdP credential name
- Only thing people should have to change in this file now is the entity ID and the metadata provider
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2529
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 18:25:10 +0000 (18:25 +0000)]
properly populate outbound message issuer ID
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2528
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 13:54:45 +0000 (13:54 +0000)]
correct class cast
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2527
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 12:27:15 +0000 (12:27 +0000)]
Support for conditional encryption and signing based on what the transport and binding are capable of supporting
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2526
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 11:19:49 +0000 (11:19 +0000)]
Allow Transports to express whether they provide message integrity protection
Allow bindings to determine if, given a current message context, a message would have confidentiality and message integrity protection
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2525
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 08:12:39 +0000 (08:12 +0000)]
clean up/optimize equals() and hashCode() methods
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2524
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 8 Jan 2008 06:19:34 +0000 (06:19 +0000)]
Fix NPE if attribute statement is null
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2523
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
wnorris [Mon, 7 Jan 2008 21:15:30 +0000 (21:15 +0000)]
fix redirect loop within authentication engine
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2522
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
wnorris [Mon, 7 Jan 2008 20:26:49 +0000 (20:26 +0000)]
redo fix for handling passive authentication.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2521
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 7 Jan 2008 07:31:10 +0000 (07:31 +0000)]
Add schema validation metadata filter (commented out)
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2520
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 7 Jan 2008 06:53:08 +0000 (06:53 +0000)]
comment out signature validation rule, not ready for use yet.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2519
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 7 Jan 2008 06:27:25 +0000 (06:27 +0000)]
Fix up some typos and synch up with minor schema file changes.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2518
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sun, 6 Jan 2008 17:54:02 +0000 (17:54 +0000)]
fix typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2517
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 5 Jan 2008 14:01:15 +0000 (14:01 +0000)]
Fix up bump copyright year ahead
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2516
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 5 Jan 2008 10:15:56 +0000 (10:15 +0000)]
Add simple sign as supported outbound binding
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2515
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 5 Jan 2008 07:50:08 +0000 (07:50 +0000)]
Minor default config fix ups
Pick up minor API change from shib common
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2514
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 4 Jan 2008 06:22:54 +0000 (06:22 +0000)]
Bit o' unit test fix up
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2513
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 3 Jan 2008 12:33:17 +0000 (12:33 +0000)]
Fix-up some default/example configs
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2512
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 3 Jan 2008 07:45:33 +0000 (07:45 +0000)]
Small default config updates
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2511
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 31 Dec 2007 10:05:45 +0000 (10:05 +0000)]
Command line tools for getting IdP version
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2510
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 31 Dec 2007 10:01:30 +0000 (10:01 +0000)]
Checkstyle cleanups
Ensure macros are correctly populated in src before compilation
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2509
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 31 Dec 2007 09:28:40 +0000 (09:28 +0000)]
Add container session listener that will destroy IdP sessions if the container sessions timeout or are destroyed
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2508
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 27 Dec 2007 08:43:30 +0000 (08:43 +0000)]
Try to limit Xerces from pulling in external system entities. Addressing SIDP-97
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2507
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 18 Dec 2007 11:52:30 +0000 (11:52 +0000)]
Fix NPE if message does not contain a subject - addresses SIDP-104
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2506
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 18 Dec 2007 10:26:57 +0000 (10:26 +0000)]
Fix log typos
Address SIDP - 105
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2505
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 17 Dec 2007 13:48:45 +0000 (13:48 +0000)]
Attempt to honor force authentication flag - addresses SIDP-81
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2504
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 17 Dec 2007 11:48:22 +0000 (11:48 +0000)]
Fix some log message typos
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2503
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 17 Dec 2007 11:43:48 +0000 (11:43 +0000)]
Address SIDP-95 (what kind of freak sends an Authn Request to the attribute query handler?!)
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2502
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 15 Dec 2007 18:37:51 +0000 (18:37 +0000)]
Fix logging message, addresses SIDP-90
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2501
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 15 Dec 2007 16:04:11 +0000 (16:04 +0000)]
correct typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2500
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 15 Dec 2007 13:39:01 +0000 (13:39 +0000)]
Fix SIDP-85; SAML 1 endpoint would have exhibited the same problem
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2499
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 15 Dec 2007 13:28:21 +0000 (13:28 +0000)]
Fix SIDP-72, for real this time.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2498
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 15 Dec 2007 08:49:08 +0000 (08:49 +0000)]
Support Subjects identified in AuthN request. Fixes SIDP-82
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2497
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 14 Dec 2007 10:55:32 +0000 (10:55 +0000)]
Be more exact on SAML 2 version check
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2496
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 12 Dec 2007 19:47:49 +0000 (19:47 +0000)]
make sure conditions get set
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2495
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 12 Dec 2007 12:22:13 +0000 (12:22 +0000)]
temporary fix for SIDP-72 so Nate can continue testing
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2494
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 12 Dec 2007 06:26:02 +0000 (06:26 +0000)]
Add xerces security manager to pool parsers - fixed SIDP-74
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2493
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 11 Dec 2007 14:36:16 +0000 (14:36 +0000)]
Allow login handlers to indicate which authentication method they used
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2492
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 6 Dec 2007 22:21:23 +0000 (22:21 +0000)]
Synch up capitalization with SP
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2491
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 6 Dec 2007 14:09:57 +0000 (14:09 +0000)]
fix typo in name of SAML 2 transient principal connector
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2490
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 6 Dec 2007 14:01:48 +0000 (14:01 +0000)]
fix up examples of scoped attributes
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2489
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 4 Dec 2007 16:41:13 +0000 (16:41 +0000)]
Add SAML match functions into example config
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2488
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 3 Dec 2007 18:06:58 +0000 (18:06 +0000)]
fix typos
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2487
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 3 Dec 2007 17:15:28 +0000 (17:15 +0000)]
another typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2486
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 3 Dec 2007 17:08:59 +0000 (17:08 +0000)]
correct a couple typos in example files
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2485
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 30 Nov 2007 07:50:43 +0000 (07:50 +0000)]
Better example resolver and filter files
Clearer log messaged around name identifier creation
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2484
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 23 Nov 2007 07:45:00 +0000 (07:45 +0000)]
Fix bug SIDP-58
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2483
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 23 Nov 2007 07:02:41 +0000 (07:02 +0000)]
Correct bug SIDP-61
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2482
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 22 Nov 2007 07:09:36 +0000 (07:09 +0000)]
Share java-shib-common package
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2481
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 19 Nov 2007 21:27:08 +0000 (21:27 +0000)]
Remove example of inline credentials
Add example of default signing credential reference in example relying party configuration
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2477
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 19 Nov 2007 21:22:39 +0000 (21:22 +0000)]
IdP change log
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2476
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 19 Nov 2007 17:30:30 +0000 (17:30 +0000)]
Add in sec pol rule for HTTP-POST-SimpleSign binding.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2475
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 19 Nov 2007 01:58:30 +0000 (01:58 +0000)]
Update config with decoders, encoders and profile handler endpoints for HTTP-POST-SimpleSign binding.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2474
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Sun, 18 Nov 2007 20:50:06 +0000 (20:50 +0000)]
Fix explicit key credential trust engine to be an ExplicitKeyTrustEngine, not an ExplicitX509CertificateTrustEngine.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2473
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Fri, 16 Nov 2007 02:29:13 +0000 (02:29 +0000)]
Fix typos in Spring id's.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2471
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Wed, 14 Nov 2007 20:49:42 +0000 (20:49 +0000)]
Fix typo in example.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2470
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 14 Nov 2007 19:16:06 +0000 (19:16 +0000)]
Code to encrypt assertions
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2469
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 14 Nov 2007 08:23:54 +0000 (08:23 +0000)]
pull entity peer entity ID from correct parameter
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2468
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 14 Nov 2007 08:17:37 +0000 (08:17 +0000)]
First pass at supporting NameID encryption
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2467
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 13 Nov 2007 07:13:49 +0000 (07:13 +0000)]
Add in trust engines and crypto-related security policies
Clean up metadata provider example so that there is a top level chaining provider and examples of others inside it
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2466
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 12 Nov 2007 20:49:24 +0000 (20:49 +0000)]
Fix other logging category typo related to r2464.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2465
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Nov 2007 12:39:53 +0000 (12:39 +0000)]
Correct spelling error for access log category
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2464
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Nov 2007 07:21:21 +0000 (07:21 +0000)]
Put rolled log files into the log directory
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2463
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Nov 2007 07:17:55 +0000 (07:17 +0000)]
mark user authenticated when authN succeeds
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2462
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Nov 2007 07:06:35 +0000 (07:06 +0000)]
Clean up AuthN state better in the event of a failure
Attempt to detect when a user aborts midway through the AuthN process
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2461
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
wnorris [Fri, 9 Nov 2007 21:32:39 +0000 (21:32 +0000)]
fix login form, and allow a couple of parameters to be overridden in web.xml
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2460
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 9 Nov 2007 12:07:02 +0000 (12:07 +0000)]
Fix copy-paste error
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2459
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 9 Nov 2007 11:46:56 +0000 (11:46 +0000)]
Synch up NameID encoder and principal connector examples
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2458
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 9 Nov 2007 06:49:43 +0000 (06:49 +0000)]
No need for special log4j exclusion rule in build
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2457
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
wnorris [Thu, 8 Nov 2007 19:40:18 +0000 (19:40 +0000)]
apparently Chad doesn't like user feedback; well I'll show him! (fixes SIDP-42... again)
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2456
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 8 Nov 2007 15:20:22 +0000 (15:20 +0000)]
Deal with case when JAAS modules don't populate any principal data. This isn't really valid per the JAAS spec but some modules are doing it.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2455
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 7 Nov 2007 11:49:51 +0000 (11:49 +0000)]
Use username if JAAS module doesn't populate the prinicpal's name
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@2454
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
projects / java-idp.git / log