lajoie [Tue, 11 Jan 2011 10:37:51 +0000 (10:37 +0000)]
prevent cast class exception if a user starts a SAML 1 flow, leaves in the middle, then starts a SAML 2 flow (or vice versa) - SIDP-438
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2980
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 11 Jan 2011 10:31:32 +0000 (10:31 +0000)]
facilitate replay detection of Shibboleth SSO messages by: - SIDP-452
- add psuedo-message ID for Shibboleth SSO requests
- adding reply check to Shibboleth SSO protocol security checks
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2979
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 8 Jan 2011 20:00:45 +0000 (20:00 +0000)]
ensure that services always wrap any work done within the read/write lock with a try/finally that unlocks after exiting the block - SC-133
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2978
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 8 Jan 2011 19:28:55 +0000 (19:28 +0000)]
add SIDP-433 to release notes
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2977
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sat, 8 Jan 2011 18:47:08 +0000 (18:47 +0000)]
Use the same method for getting the principal name when indexing the session as when retrieving it elsewhere in the code - SIDP-435
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2976
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 4 Jan 2011 13:59:30 +0000 (13:59 +0000)]
Add displayName to the default attribute resolver - SIDP-457
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2975
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
cantor [Wed, 22 Dec 2010 19:36:58 +0000 (19:36 +0000)]
Profile handlers override encoder nameQualifier setting
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2974
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
cantor [Wed, 22 Dec 2010 19:29:29 +0000 (19:29 +0000)]
Forced authentication does not reset the AuthnInstant
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2973
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 16:58:12 +0000 (16:58 +0000)]
fix hard timeout on session - SIDP-453
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2972
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 16:01:41 +0000 (16:01 +0000)]
Fix attribute query profile handlers such that exceptions that occur during attribute resolution do not lead to an NPE - SIDP-250
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2971
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 15:52:09 +0000 (15:52 +0000)]
Fix NPE when SAML2 SSO requests contain an (invalid) empty authn context class or decl ref - SIDP-436
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2970
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 15:30:50 +0000 (15:30 +0000)]
ensure servlet API jar gets bundled in to the distribution so it can be included in the CLI lib directory - SIDP-422
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2969
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 14:55:07 +0000 (14:55 +0000)]
explicitly set cache related headers to prevent caching of any response - SIDP-432 and perhaps SIDP-345
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2968
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 21 Dec 2010 14:27:08 +0000 (14:27 +0000)]
use helper method to create redirect URL - SIDP-447
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2967
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 10 Nov 2010 23:04:03 +0000 (23:04 +0000)]
Fix errors in URL creation when IdP context is bound to / - SIDP-417
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2966
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 10 Nov 2010 19:56:19 +0000 (19:56 +0000)]
Properly handle case where authentication fails and control is handed back to profile handler - SIDP-427
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2965
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 10 Nov 2010 18:55:47 +0000 (18:55 +0000)]
Fix some more resolver typos - SIDP-434
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2964
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 10 Nov 2010 17:23:44 +0000 (17:23 +0000)]
Fix response and assertion signing defaults - SC-116
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2963
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 10 Nov 2010 15:08:04 +0000 (15:08 +0000)]
update version numbers
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2962
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 9 Nov 2010 19:56:03 +0000 (19:56 +0000)]
Fix typo in resolver conf - SIDP-431
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2961
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 25 Oct 2010 22:42:07 +0000 (22:42 +0000)]
SIDP-428: Address lifecycle issues around use of MetadataCredentialResolverFactory
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2960
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
cantor [Thu, 7 Oct 2010 01:09:52 +0000 (01:09 +0000)]
Spelling error in log message.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2959
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 4 Oct 2010 21:01:53 +0000 (21:01 +0000)]
SIDP-421 - Error logging SOAP queries
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2958
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 27 Sep 2010 23:17:01 +0000 (23:17 +0000)]
Fix usage of java.text.MessageFormat.
Remove unused header.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2957
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 23 Sep 2010 11:51:29 +0000 (11:51 +0000)]
Update POMs for release
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2955
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 23 Sep 2010 11:12:30 +0000 (11:12 +0000)]
Fix case where name identifier wasn't logged - SIDP-415
Fix metadata provider observer leak - SIDP-416
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2954
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 20 Sep 2010 14:24:11 +0000 (14:24 +0000)]
Fix link to login page customization doc - SIDP-413
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2953
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 20 Sep 2010 14:11:05 +0000 (14:11 +0000)]
ensure name identifier properly logged in audit log - SIDP-415
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2952
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 14 Sep 2010 12:35:11 +0000 (12:35 +0000)]
Remove a bit more example stuff from the example login page
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2951
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 13 Sep 2010 17:29:31 +0000 (17:29 +0000)]
Denote media type of metadata as application/xml if browser does not ask for application/samlmetadata+xml - SIDP-403
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2950
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 13 Sep 2010 14:42:41 +0000 (14:42 +0000)]
Check for null login context on the login.jsp and print an error that the login page can not be directly accessed. - SIDP-411
Also, make it even more clear that the provided login page is an example page
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2949
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 13 Sep 2010 12:59:26 +0000 (12:59 +0000)]
Check to make sure principal is authenticated if they have a login context and are returning to the IdP after having been to the login page but didn't authenticate - SIDP-409
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2948
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
cantor [Wed, 25 Aug 2010 20:26:19 +0000 (20:26 +0000)]
Shibboleth SSO profile handler sets incorrect protocol string in outbound message context
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2947
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 24 Aug 2010 14:10:07 +0000 (14:10 +0000)]
Fix up config typos and loggin configs
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2946
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 23 Aug 2010 18:17:59 +0000 (18:17 +0000)]
Remove some commented out code
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2945
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 23 Aug 2010 18:17:35 +0000 (18:17 +0000)]
Fix bug where authentication method information was being re-recorded every authentication.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2944
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 23 Aug 2010 13:56:06 +0000 (13:56 +0000)]
Remove use of SLF4j MessageFormatter whose API changes in 1.6
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2943
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 23 Aug 2010 12:37:32 +0000 (12:37 +0000)]
Update 3rd party libs - SIDP-402
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2942
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 17 Aug 2010 00:33:19 +0000 (00:33 +0000)]
Fix bug where previous session login handler was attempted to be used if all authentication methods expired but session was still alive - SIDP-396
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2941
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 16 Aug 2010 13:35:11 +0000 (13:35 +0000)]
Stop using request forwards between authentication engine and profile handler - SIDP-380
Make profile handler responsible for binding/unbinding LoginContext
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2940
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 6 Aug 2010 22:31:51 +0000 (22:31 +0000)]
Deal with case when AuthnRequest does not include a NameIDPolicy - SIDP-400
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2939
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 3 Aug 2010 23:17:03 +0000 (23:17 +0000)]
Declare all namespaces at top, use prefixed names for all elements - SIDP-288
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2938
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 3 Aug 2010 19:15:41 +0000 (19:15 +0000)]
Remove use of events within session manager
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2937
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 3 Aug 2010 10:14:17 +0000 (10:14 +0000)]
Fix NPE in LoginContext when authentication method information has not yet been set - SIDP-392
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2936
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 3 Aug 2010 10:05:30 +0000 (10:05 +0000)]
Clear session indexes when session is destroyed - SIDP-386
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2935
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 3 Aug 2010 08:06:08 +0000 (08:06 +0000)]
Fix up unit test cases - SIDP-397
Update logging configuration files
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2934
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sun, 20 Jun 2010 18:57:34 +0000 (18:57 +0000)]
Fix another NPE dealing with encoding attributes to name identifiers
Remove some nearly duplicate code
Improve logging messages
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2933
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Sun, 20 Jun 2010 17:37:44 +0000 (17:37 +0000)]
Fix NPE when no attributes available to be encoded into a name identifier
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2932
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 22:56:25 +0000 (22:56 +0000)]
Use new metadata methods instead of deprecated ones
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2931
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 00:41:40 +0000 (00:41 +0000)]
Use duration notation for assertion lifetime in example config files - SIDP-381
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2930
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 00:38:17 +0000 (00:38 +0000)]
Switch parser pool implementation to one with fewer locks - SIDP-374
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2929
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 00:34:45 +0000 (00:34 +0000)]
decrease verbosity and logging messge of error message logged when a name ID can not be resolved in to a principal - SIDP-382
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2928
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 00:28:48 +0000 (00:28 +0000)]
Cleanup xmlns attributes and add some known namespace decls to the root elements of the config files - SIDP-288
Add eduPersonAssurance attribute to example attribute resolver - SIDP-388
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2927
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 May 2010 00:19:06 +0000 (00:19 +0000)]
fix typo in error msg - SIDP-384
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2926
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Wed, 7 Apr 2010 23:21:51 +0000 (23:21 +0000)]
Implement config wiring changes related to artifact map and JOST-110:
- inject the shibboleth.ParserPool bean into the OpenSAML config, and set on Configuration singleton,
so we are using a single ParserPool everywhere
- remove shibboleth.ParserPool from being injected on shibboleth.ArtifactMap bean, constructor now deprecated.
These changes are optional and non-disruptive, existing configs will continue to work as-is.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2925
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 16 Mar 2010 07:32:25 +0000 (07:32 +0000)]
Support explicitly setting the domain for cookies. - SIDP-369
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2924
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 16 Mar 2010 07:14:41 +0000 (07:14 +0000)]
Properly wrap LoginExceptions as AuthenticationException as documentation says - SIDP-379
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2923
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 16 Mar 2010 07:06:03 +0000 (07:06 +0000)]
Add Servlet filter to cleanup MDC context
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2922
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 4 Mar 2010 14:25:55 +0000 (14:25 +0000)]
Refactor name identifier code, pulling all of the selection process up in to AbstractSAMLProfileHandler
Always populate name qualifiers for name identifiers
Fix type in cache manager ID in internal.xml
Fix encoder type of jpegPhoto attribute in attribute-resolver.xml
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2921
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 26 Feb 2010 13:17:45 +0000 (13:17 +0000)]
Add SPNameQualifier to returned NameIDs if present in request
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2920
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 25 Feb 2010 22:02:03 +0000 (22:02 +0000)]
check that SP participating in affiliation is in fact in the affiliation
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2919
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 25 Feb 2010 18:24:47 +0000 (18:24 +0000)]
Favor UsernamePrincipal when Session.getPrincipalName is called
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2918
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 19 Feb 2010 16:21:50 +0000 (16:21 +0000)]
Fix minor break in login.jsp backward compat when authn errors occur
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2917
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 19 Feb 2010 00:59:28 +0000 (00:59 +0000)]
Expose login exception to login.jsp page in order to allow better message customization - SIDP-368
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2916
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 17 Feb 2010 17:51:17 +0000 (17:51 +0000)]
Add cache manager configuration
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2915
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 11 Feb 2010 17:32:06 +0000 (17:32 +0000)]
Fix schema datatype for duration attribute within schema
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2914
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 11 Feb 2010 16:33:37 +0000 (16:33 +0000)]
Support ISO8601 duration format for login authentication duration - SC-63
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2913
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 11 Feb 2010 14:38:03 +0000 (14:38 +0000)]
Add start time and uptime to status page - SIDP-365
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2912
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 16 Dec 2009 08:32:48 +0000 (08:32 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-355
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2909
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 16 Dec 2009 08:07:17 +0000 (08:07 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-359
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2908
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 16 Dec 2009 08:02:15 +0000 (08:02 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-360
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2907
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 16 Dec 2009 07:58:47 +0000 (07:58 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-362
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2906
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 4 Nov 2009 16:13:03 +0000 (16:13 +0000)]
Update shib common version
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2902
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 28 Oct 2009 05:24:22 +0000 (05:24 +0000)]
Don't trim username and passwords of outer whitespace
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2900
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 27 Oct 2009 05:58:43 +0000 (05:58 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-353
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2899
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Oct 2009 17:06:48 +0000 (17:06 +0000)]
Leave out checkstyle checks during release phase for now
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2897
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 12 Oct 2009 16:58:38 +0000 (16:58 +0000)]
Override VT LDAP version included in shib-common
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2896
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 1 Oct 2009 10:32:52 +0000 (10:32 +0000)]
Fail attribute query request if specific attributes are requested - SIDP-344
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2895
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Mon, 28 Sep 2009 07:02:55 +0000 (07:02 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-343
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2894
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 25 Sep 2009 07:01:18 +0000 (07:01 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-350
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2893
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 25 Sep 2009 06:27:18 +0000 (06:27 +0000)]
https://bugs.internet2.edu/jira/browse/SIDP-342
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2892
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 24 Sep 2009 11:58:35 +0000 (11:58 +0000)]
Send back a valid authn statement upon successful authn even if attribute resolution fails - SIDP-351
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2891
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 24 Sep 2009 08:18:44 +0000 (08:18 +0000)]
Be sure to remove LoginContext from StorageService after authentication completes - SIDP-249
Bump patch version number
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2890
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 24 Sep 2009 07:01:49 +0000 (07:01 +0000)]
Remove TC config and place it on the wiki to be maintained - SIDP-348
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2889
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 27 Aug 2009 11:21:35 +0000 (11:21 +0000)]
Update projects to Eclipse-3.5, IAM, Checkstyle 5
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2888
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
wnorris [Thu, 27 Aug 2009 00:59:13 +0000 (00:59 +0000)]
add schema information to POM
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2887
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 21 Aug 2009 13:23:22 +0000 (13:23 +0000)]
Include missing installer library
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2885
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 Aug 2009 11:10:51 +0000 (11:10 +0000)]
fix typo
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2882
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Thu, 20 Aug 2009 11:09:31 +0000 (11:09 +0000)]
Don't trim username and password. Apparently some people have spaces as the start of both.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2881
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 19 Aug 2009 14:50:15 +0000 (14:50 +0000)]
Don't pull in two versions of bouncycastle
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2880
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Tue, 18 Aug 2009 09:28:48 +0000 (09:28 +0000)]
Fix warning about character encoding during build
Remove unused snapshot repo location
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2879
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 5 Aug 2009 16:43:51 +0000 (16:43 +0000)]
Only allow localhost to access the status page, by default
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2878
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 5 Aug 2009 16:42:39 +0000 (16:42 +0000)]
Fix CCE
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2877
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 5 Aug 2009 12:21:59 +0000 (12:21 +0000)]
Create IP range helper class
Refactor IP address login handler to use IP range helper
Add IP authentication for new status handler
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2876
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Wed, 5 Aug 2009 07:52:11 +0000 (07:52 +0000)]
Clean up cookie creation - use version 1, set path to IdP context, use session scoped cookies
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2875
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Tue, 21 Jul 2009 21:39:35 +0000 (21:39 +0000)]
Some refactoring in profile handlers to expose explicit methods for the determination
of whether to sign assertions and responses and to encrypt assertions and name IDs.
Makes code nicer style-wise, and also allows overriding, as in the delegation extension.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2874
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
putmanb [Mon, 20 Jul 2009 23:33:01 +0000 (23:33 +0000)]
Profile handler should use its getProfileId() method to obtain the communication profile ID to use.
Otherwise causes problems for subclassing.
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2873
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 17 Jul 2009 06:59:08 +0000 (06:59 +0000)]
fix links
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2872
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 17 Jul 2009 06:58:00 +0000 (06:58 +0000)]
link in some external project's javadocs
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2871
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca
lajoie [Fri, 17 Jul 2009 06:46:57 +0000 (06:46 +0000)]
Fix up some javadocs
Update release notes reflecting last couple of commits
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/branches/REL_2@2870
ab3bd59b-922f-494d-bb5f-
6f0a3c29deca