Arsharth
/
dex
forked from mystiq/dex
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
dex/connector
History
Stephan Renatus 608260d0f1 saml: add tests case covering tampered NameID field (comment) 
As sketched here:

https://developer.okta.com/blog/2018/02/27/a-breakdown-of-the-new-saml-authentication-bypass-vulnerability

Thought it was interesting to see how our SAML connector behaved. And
it seems to be behaving well. :)

Signed-off-by: Stephan Renatus <srenatus@chef.io>
 		2018-02-28 08:42:17 +01:00
..
authproxy authproxy: update docs and set a userID 2017-10-26 10:47:16 -07:00
github Implement the “authproxy” connector (for Apache2 mod_auth etc.) 2017-10-25 21:53:51 +02:00
gitlab Implement the “authproxy” connector (for Apache2 mod_auth etc.) 2017-10-25 21:53:51 +02:00
ldap 1170 - Fix comment typos 2018-01-14 12:34:45 +00:00
linkedin connector/linkedin: implement RefreshConnector interface 2017-10-27 12:54:28 +03:00
microsoft connector/microsoft: add support for groups 2017-11-23 17:01:34 +03:00
mock password connectors: allow overriding the username attribute (password prompt) 2017-11-09 09:30:03 +01:00
oidc connector/oidc: remove test that talks to the internet 2017-10-27 13:40:50 -07:00
saml saml: add tests case covering tampered NameID field (comment) 2018-02-28 08:42:17 +01:00
connector.go password connectors: allow overriding the username attribute (password prompt) 2017-11-09 09:30:03 +01:00