Scott Cantor [Sun, 20 May 2007 20:20:57 +0000 (20:20 +0000)]
Start to clean up Unix build.
Scott Cantor [Sat, 19 May 2007 18:11:17 +0000 (18:11 +0000)]
New -lite library and elimination of SAML libraries from modules.
Scott Cantor [Mon, 14 May 2007 00:29:49 +0000 (00:29 +0000)]
Fixed attribute-based functors.
Implemented special handling of REMOTE_USER.
Added header clearing method to resolver/extractor.
Added default policy file.
Scott Cantor [Sat, 12 May 2007 00:00:17 +0000 (00:00 +0000)]
Update thread config macro, add openssl headers to libsaml build.
Scott Cantor [Thu, 10 May 2007 17:39:58 +0000 (17:39 +0000)]
Wasn't returning from errors during POST read.
Scott Cantor [Thu, 10 May 2007 01:15:43 +0000 (01:15 +0000)]
Added OIDs for SAML 2.0 attribute mappings.
Scott Cantor [Wed, 9 May 2007 04:29:56 +0000 (04:29 +0000)]
Metadata based functors.
Scott Cantor [Wed, 9 May 2007 02:06:10 +0000 (02:06 +0000)]
Mix/max functor.
Add safety feature when requiring metadata/trust.
Scott Cantor [Tue, 8 May 2007 21:17:54 +0000 (21:17 +0000)]
Better logging for remoted errors.
Raise metadata exceptions when IdP is unknown.
Cleanup error templates.
Scott Cantor [Tue, 8 May 2007 03:59:38 +0000 (03:59 +0000)]
Regex functors, added regex options feature to schema.
Scott Cantor [Tue, 8 May 2007 02:57:39 +0000 (02:57 +0000)]
Run wildcard rules.
Scott Cantor [Tue, 8 May 2007 02:28:49 +0000 (02:28 +0000)]
Genericize string values and scopes, add value/scope functors.
Scott Cantor [Tue, 8 May 2007 01:06:23 +0000 (01:06 +0000)]
Fix attributeID name.
Scott Cantor [Mon, 7 May 2007 22:46:08 +0000 (22:46 +0000)]
First three string functors, added authn context to resolver/filter contexts.
Scott Cantor [Mon, 7 May 2007 15:57:48 +0000 (15:57 +0000)]
Boolean match functors, policy context to manage lifetime and references.
Scott Cantor [Sun, 6 May 2007 23:44:32 +0000 (23:44 +0000)]
Attribute filtering code.
Scott Cantor [Fri, 4 May 2007 17:44:38 +0000 (17:44 +0000)]
Delete old files.
Scott Cantor [Fri, 4 May 2007 04:11:29 +0000 (04:11 +0000)]
Need to use SP-specific policy subclass for SOAP client.
Reverse default for acsByIndex setting to true.
Scott Cantor [Wed, 2 May 2007 19:07:53 +0000 (19:07 +0000)]
Fix reference to providerId.
Propagate special attribute properties.
Add back NameID extraction to SSO handlers.
Scott Cantor [Wed, 2 May 2007 00:55:55 +0000 (00:55 +0000)]
Add chaining resolver.
Scott Cantor [Mon, 30 Apr 2007 19:17:54 +0000 (19:17 +0000)]
Fix old namespace defaults.
Fix vararg error in NameID attribute class.
Working extractor/resolver code.
Scott Cantor [Mon, 30 Apr 2007 03:21:57 +0000 (03:21 +0000)]
Copied over mapping and filtering schemas.
New AttributeExtractor API for SAML decoding.
Rewrite of simple AttributeResolver as a query-only component.
Add missing logic for deriving case sensitive attribute flag.
Switch to multimaps for attribute APIs to allow duplicate IDs.
Scott Cantor [Thu, 19 Apr 2007 17:22:58 +0000 (17:22 +0000)]
Additional AuthnRequest creation options.
Scott Cantor [Wed, 18 Apr 2007 04:03:13 +0000 (04:03 +0000)]
Stop defaulting in xercesc namespace.
Scott Cantor [Sun, 15 Apr 2007 21:10:45 +0000 (21:10 +0000)]
Drafts of remoted Shib and SAML2 SessionInitiators.
Start to rework metadata for SAML 2.
Enable relay state preservation on shibd side.
Server modules should no longer require loading of metadata.
Scott Cantor [Fri, 13 Apr 2007 20:38:45 +0000 (20:38 +0000)]
Set signing/digest algorithms using new settings.
Scott Cantor [Fri, 13 Apr 2007 03:12:29 +0000 (03:12 +0000)]
Remove extra marshall call.
Scott Cantor [Fri, 13 Apr 2007 01:18:44 +0000 (01:18 +0000)]
Inject logging category into base class.
Scott Cantor [Thu, 12 Apr 2007 21:55:42 +0000 (21:55 +0000)]
Untested, but a bunch of caching fixes added.
Scott Cantor [Mon, 9 Apr 2007 03:45:07 +0000 (03:45 +0000)]
Enhance relay state handling.
Scott Cantor [Thu, 5 Apr 2007 02:35:23 +0000 (02:35 +0000)]
Old and new discovery handlers.
Scott Cantor [Wed, 4 Apr 2007 21:12:47 +0000 (21:12 +0000)]
Factor entityID into SessionInitiator subinterface, move WAYF logic out of Shib handler.
Scott Cantor [Wed, 4 Apr 2007 04:04:33 +0000 (04:04 +0000)]
Improve property inheritance, first batch of SessionInitiators, rename providerId.
Scott Cantor [Wed, 4 Apr 2007 04:02:10 +0000 (04:02 +0000)]
Can't overlap headers or we'll break multiple Set-Cookies.
Scott Cantor [Mon, 2 Apr 2007 19:39:16 +0000 (19:39 +0000)]
Upport Apache auto-detect code.
Scott Cantor [Mon, 2 Apr 2007 03:56:10 +0000 (03:56 +0000)]
Implement artifact resolution support.
Scott Cantor [Mon, 2 Apr 2007 02:11:08 +0000 (02:11 +0000)]
SP policy subclass for use by artifact resolver.
Scott Cantor [Sun, 1 Apr 2007 22:30:15 +0000 (22:30 +0000)]
Support for application-specific attribute IDs.
Scott Cantor [Sun, 1 Apr 2007 21:13:46 +0000 (21:13 +0000)]
Handle reverse mapping of IDs into attributes to query.
Scott Cantor [Fri, 30 Mar 2007 18:37:38 +0000 (18:37 +0000)]
Serializing pointer instead of object.
Scott Cantor [Fri, 30 Mar 2007 02:20:01 +0000 (02:20 +0000)]
Config changes and rework for new credential APIs.
Scott Cantor [Mon, 19 Mar 2007 03:18:36 +0000 (03:18 +0000)]
Draft SAML 2 SSO impl.
Scott Cantor [Mon, 19 Mar 2007 01:30:29 +0000 (01:30 +0000)]
Return default creds when peer is unknown.
Scott Cantor [Sun, 18 Mar 2007 22:57:07 +0000 (22:57 +0000)]
First support for encrypted attributes.
Scott Cantor [Sun, 18 Mar 2007 21:56:48 +0000 (21:56 +0000)]
Make NameID optional in session.
Scott Cantor [Sat, 17 Mar 2007 19:03:15 +0000 (19:03 +0000)]
Cache invalid tokens in case they're targeted at other services.
Scott Cantor [Sat, 17 Mar 2007 01:50:01 +0000 (01:50 +0000)]
Allow for unsigned artifact response.
Scott Cantor [Sun, 11 Mar 2007 04:22:00 +0000 (04:22 +0000)]
Rework address handling based on app/location.
Scott Cantor [Sun, 11 Mar 2007 04:21:34 +0000 (04:21 +0000)]
Rework address handling based on app/location.
Scott Cantor [Sun, 11 Mar 2007 03:25:39 +0000 (03:25 +0000)]
Lock configuration before dispatching calls.
Scott Cantor [Sun, 11 Mar 2007 00:34:15 +0000 (00:34 +0000)]
Fix format handling in resolver, correct DDF looping bugs.
Scott Cantor [Sat, 10 Mar 2007 21:07:59 +0000 (21:07 +0000)]
Adjust logging/error-handling, schema fixes, failed message handling.
Scott Cantor [Thu, 8 Mar 2007 21:44:03 +0000 (21:44 +0000)]
Add option to use redirection for handler errors.
Scott Cantor [Thu, 8 Mar 2007 21:42:16 +0000 (21:42 +0000)]
Add option to use redirection for handler errors, capture relay state when propagating exceptions.
Scott Cantor [Thu, 8 Mar 2007 04:42:12 +0000 (04:42 +0000)]
Moved URLEncoder down to tooling lib, added exception->querystring method.
Scott Cantor [Thu, 8 Mar 2007 02:47:34 +0000 (02:47 +0000)]
Factor out RelayState recovery.
Scott Cantor [Wed, 7 Mar 2007 20:36:08 +0000 (20:36 +0000)]
Move token validation into SAML library, first draft SAML 1 SSO handler.
Scott Cantor [Mon, 5 Mar 2007 05:50:16 +0000 (05:50 +0000)]
Added marker interface for assertion types.
Scott Cantor [Sat, 3 Mar 2007 22:17:55 +0000 (22:17 +0000)]
Handle multiple assertions in resolver.
Scott Cantor [Sat, 3 Mar 2007 21:19:04 +0000 (21:19 +0000)]
Allow cache insertion with multiple assertions.
Scott Cantor [Fri, 2 Mar 2007 05:04:30 +0000 (05:04 +0000)]
ArtifactMap support.
Scott Cantor [Fri, 2 Mar 2007 03:39:39 +0000 (03:39 +0000)]
Moved handler sources.
Scott Cantor [Fri, 2 Mar 2007 02:47:52 +0000 (02:47 +0000)]
Moved key/cred resolution classes out of xmlsig namespace, start cleaning up configure.
Scott Cantor [Thu, 1 Mar 2007 18:11:43 +0000 (18:11 +0000)]
Rework decoder handling in simple resolver, add IdP/SP names to decoder API, hook resolver up to Applications.
Scott Cantor [Wed, 28 Feb 2007 16:53:10 +0000 (16:53 +0000)]
Moved CGI parsing to OS, add handler base for remoting HTTP req/resp data.
Scott Cantor [Sat, 24 Feb 2007 22:04:37 +0000 (22:04 +0000)]
A "simple" attribute resolver, and token validation.
Scott Cantor [Tue, 20 Feb 2007 05:21:31 +0000 (05:21 +0000)]
Fix catalog usage, checked in resolver schema.
Scott Cantor [Mon, 19 Feb 2007 01:38:49 +0000 (01:38 +0000)]
Convenience method for accessing SP instance.
Scott Cantor [Sun, 18 Feb 2007 23:06:21 +0000 (23:06 +0000)]
NameID decoder.
Scott Cantor [Sun, 18 Feb 2007 06:07:01 +0000 (06:07 +0000)]
Simple and Scoped Attribute decoders.
Scott Cantor [Sat, 17 Feb 2007 22:30:47 +0000 (22:30 +0000)]
Adjust logging files, add console logging for command line.
Scott Cantor [Thu, 15 Feb 2007 23:04:59 +0000 (23:04 +0000)]
Correct name of signing flag.
Scott Cantor [Thu, 15 Feb 2007 23:04:37 +0000 (23:04 +0000)]
Bug in request signing.
Scott Cantor [Thu, 15 Feb 2007 22:46:09 +0000 (22:46 +0000)]
Correct constness of transport API, handle both chunked and buffered encoding.
Scott Cantor [Wed, 14 Feb 2007 05:30:12 +0000 (05:30 +0000)]
Glue SOAP client to SP config, expand policy settings.
Scott Cantor [Mon, 12 Feb 2007 06:30:07 +0000 (06:30 +0000)]
Draft of query tool, not working yet.
Scott Cantor [Sun, 11 Feb 2007 21:58:53 +0000 (21:58 +0000)]
Renamed shar project, some Makefile fixes.
Scott Cantor [Sun, 11 Feb 2007 21:26:42 +0000 (21:26 +0000)]
Remove 1.1-compat. files, include old shib schema for attribute interop.
Scott Cantor [Sun, 11 Feb 2007 05:26:18 +0000 (05:26 +0000)]
Draft of 2.0 config schema/file, removed legacy support, validate config.
Scott Cantor [Sat, 10 Feb 2007 06:21:37 +0000 (06:21 +0000)]
Change default namespace, support namespace remapping.
Scott Cantor [Fri, 9 Feb 2007 02:29:33 +0000 (02:29 +0000)]
Shorten "built-in" plugin types, delete stale files, new config file.
Scott Cantor [Tue, 6 Feb 2007 04:02:43 +0000 (04:02 +0000)]
Move config logic into an "XML" SP plugin, divorce shibd and modules from old libs.
Scott Cantor [Mon, 5 Feb 2007 03:06:39 +0000 (03:06 +0000)]
Uncomment a destructor call.
Scott Cantor [Mon, 5 Feb 2007 02:55:16 +0000 (02:55 +0000)]
Remove extra files.
Scott Cantor [Mon, 5 Feb 2007 02:41:09 +0000 (02:41 +0000)]
Removed MySQL cache.
Scott Cantor [Mon, 5 Feb 2007 02:31:06 +0000 (02:31 +0000)]
Remove xmlproviders from build, deleted old AAP interface.
Scott Cantor [Mon, 5 Feb 2007 01:49:05 +0000 (01:49 +0000)]
Attribute lookup, port ACL code and mainline SP code to Session/Attribute API.
Scott Cantor [Sun, 4 Feb 2007 03:53:13 +0000 (03:53 +0000)]
Move assertions to separate storage records, improve error handling.
Scott Cantor [Sun, 4 Feb 2007 00:23:37 +0000 (00:23 +0000)]
Lock SP instance for incoming calls.
Scott Cantor [Fri, 2 Feb 2007 23:28:48 +0000 (23:28 +0000)]
Process attributes when loading sessions.
Scott Cantor [Fri, 2 Feb 2007 06:19:57 +0000 (06:19 +0000)]
Completed attribute remoting support.
Scott Cantor [Fri, 2 Feb 2007 04:06:15 +0000 (04:06 +0000)]
Update copyright.
Scott Cantor [Wed, 31 Jan 2007 03:47:39 +0000 (03:47 +0000)]
Revamped cache plugins, buffering on inproc side, write-through each access.
Scott Cantor [Fri, 26 Jan 2007 23:56:51 +0000 (23:56 +0000)]
Nearly testable draft of storage-based cache, minus remoting.
Scott Cantor [Thu, 25 Jan 2007 23:22:32 +0000 (23:22 +0000)]
Reworking legacy caching config.
Scott Cantor [Thu, 25 Jan 2007 02:37:26 +0000 (02:37 +0000)]
Reworked outgoing messages to optimize for pre-serialized case.
Scott Cantor [Thu, 25 Jan 2007 02:37:01 +0000 (02:37 +0000)]
Reworked outgoing messages to optimize for pre-serialized case.
Scott Cantor [Thu, 25 Jan 2007 00:36:54 +0000 (00:36 +0000)]
Add indexed storage plugins, build replay cache.
Scott Cantor [Wed, 24 Jan 2007 06:51:28 +0000 (06:51 +0000)]
Shift some SAML intelligence out of cache API, start on SS-based cache.
Scott Cantor [Wed, 24 Jan 2007 06:46:21 +0000 (06:46 +0000)]
Add value count accessor.