mystiq/dex
Archived
4
0
Fork 1
Code Issues Pull requests Packages Projects Releases Wiki Activity
This repository has been archived on 2022-08-17. You can view files and clone it, but cannot push or open issues or pull requests.
dex/connector/saml
History
Holger Koser e46f2ebe40 Improve SAML Signature and Response Validation 
* Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17).
* Do not compress the AuthnRequest if `HTTP-POST` binding is used.
* SAML Response is valid if the Message and/or the Assertion is signed.
* Add `AssertionConsumerServiceURL` to `AuthnRequest`
* Validate Status on the Response
* Validate Conditions on the Assertion
* Validation SubjectConfirmation on the Subject
2017-01-26 19:05:40 +01:00
..
testdata Improve SAML Signature and Response Validation 2017-01-26 19:05:40 +01:00
saml.go Improve SAML Signature and Response Validation 2017-01-26 19:05:40 +01:00
saml_test.go Improve SAML Signature and Response Validation 2017-01-26 19:05:40 +01:00
types.go Improve SAML Signature and Response Validation 2017-01-26 19:05:40 +01:00