Arsharth/dex - Forgejo: Beyond coding. We forge.

Arsharth/dex

Fork 0

forked from mystiq/dex

Commit graph

Author	SHA1	Message	Date
Eric Chiang	50b223a9db	*: validate InResponseTo SAML response field and make issuer optional	2017-03-22 13:02:44 -07:00
Holger Koser	e46f2ebe40	Improve SAML Signature and Response Validation * Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17). * Do not compress the AuthnRequest if `HTTP-POST` binding is used. * SAML Response is valid if the Message and/or the Assertion is signed. * Add `AssertionConsumerServiceURL` to `AuthnRequest` * Validate Status on the Response * Validate Conditions on the Assertion * Validation SubjectConfirmation on the Subject	2017-01-26 19:05:40 +01:00
Eric Chiang	31dfb54b6f	connector: add a SAML connector	2017-01-09 18:30:58 -08:00

Author

SHA1

Message

Date

Eric Chiang

50b223a9db

*: validate InResponseTo SAML response field and make issuer optional

2017-03-22 13:02:44 -07:00

Holger Koser

e46f2ebe40

Improve SAML Signature and Response Validation

* Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17).
* Do not compress the AuthnRequest if `HTTP-POST` binding is used.
* SAML Response is valid if the Message and/or the Assertion is signed.
* Add `AssertionConsumerServiceURL` to `AuthnRequest`
* Validate Status on the Response
* Validate Conditions on the Assertion
* Validation SubjectConfirmation on the Subject

2017-01-26 19:05:40 +01:00

Eric Chiang

31dfb54b6f

connector: add a SAML connector

2017-01-09 18:30:58 -08:00

3 commits