Scott Cantor [Tue, 8 Nov 2005 23:26:51 +0000 (23:26 +0000)]
Fix for Solaris.
Scott Cantor [Tue, 8 Nov 2005 22:54:28 +0000 (22:54 +0000)]
Update for 1.3b
Scott Cantor [Tue, 8 Nov 2005 22:25:34 +0000 (22:25 +0000)]
Update version.
Scott Cantor [Tue, 8 Nov 2005 22:00:28 +0000 (22:00 +0000)]
Properly clear REMOTE_USER mapping.
Scott Cantor [Mon, 31 Oct 2005 19:20:28 +0000 (19:20 +0000)]
Nested paths were skipping rest of children.
Scott Cantor [Mon, 31 Oct 2005 18:34:57 +0000 (18:34 +0000)]
Allow slashes in path names, fix bugs in handling nested Paths.
Scott Cantor [Mon, 31 Oct 2005 18:10:19 +0000 (18:10 +0000)]
Check for null session.
Scott Cantor [Mon, 24 Oct 2005 21:41:37 +0000 (21:41 +0000)]
XML access control plugin
Scott Cantor [Mon, 24 Oct 2005 21:39:28 +0000 (21:39 +0000)]
Reuse plugin type from libshib-target
Scott Cantor [Mon, 24 Oct 2005 21:08:45 +0000 (21:08 +0000)]
Change CVS properties
Scott Cantor [Mon, 24 Oct 2005 21:07:50 +0000 (21:07 +0000)]
Fixed inheritance of authz plugins.
Scott Cantor [Mon, 24 Oct 2005 04:05:17 +0000 (04:05 +0000)]
XML access control plugin
Scott Cantor [Sun, 23 Oct 2005 23:44:02 +0000 (23:44 +0000)]
Fixed inheritance of handler definitions.
Scott Cantor [Sun, 23 Oct 2005 21:43:31 +0000 (21:43 +0000)]
Add script mapping to each site /ROOT.
Scott Cantor [Fri, 21 Oct 2005 03:30:50 +0000 (03:30 +0000)]
Implemented ADFS wsignoutcleanup.
Scott Cantor [Thu, 20 Oct 2005 03:45:32 +0000 (03:45 +0000)]
Switched to fixed context log.
Scott Cantor [Thu, 20 Oct 2005 03:37:00 +0000 (03:37 +0000)]
Wrap original MemoryListener to reduce code duplication
Scott Cantor [Wed, 19 Oct 2005 22:38:47 +0000 (22:38 +0000)]
Fix assertion wrapping step.
Scott Cantor [Wed, 19 Oct 2005 22:16:49 +0000 (22:16 +0000)]
Add minimal WST schema.
Scott Cantor [Wed, 19 Oct 2005 22:16:15 +0000 (22:16 +0000)]
Added ADFS_SSO constant.
Scott Cantor [Wed, 19 Oct 2005 22:15:38 +0000 (22:15 +0000)]
Fix underflow bug when checking empty response validity.
Scott Cantor [Wed, 19 Oct 2005 17:30:49 +0000 (17:30 +0000)]
Added replay check.
Scott Cantor [Tue, 18 Oct 2005 21:27:51 +0000 (21:27 +0000)]
Initial ADFS check in, compiles, but not tested.
Scott Cantor [Mon, 17 Oct 2005 18:08:38 +0000 (18:08 +0000)]
Allow SurName by itself.
Scott Cantor [Sat, 15 Oct 2005 20:04:17 +0000 (20:04 +0000)]
Include spaces in URL encoding.
Scott Cantor [Wed, 5 Oct 2005 17:33:27 +0000 (17:33 +0000)]
Added noreplace option to config files.
Scott Cantor [Sat, 24 Sep 2005 04:16:55 +0000 (04:16 +0000)]
Fixed postun parameter check
Scott Cantor [Sat, 24 Sep 2005 03:18:00 +0000 (03:18 +0000)]
Added chmod to init script
Scott Cantor [Sat, 24 Sep 2005 00:18:33 +0000 (00:18 +0000)]
Adding init script for shibd
Scott Cantor [Fri, 23 Sep 2005 20:07:13 +0000 (20:07 +0000)]
pidfile patch from Jim Fox
Scott Cantor [Wed, 21 Sep 2005 18:01:20 +0000 (18:01 +0000)]
Better log message for valid-user rule failure with no session.
Scott Cantor [Wed, 21 Sep 2005 17:45:48 +0000 (17:45 +0000)]
Corrected cookieProps example.
Scott Cantor [Wed, 21 Sep 2005 17:45:26 +0000 (17:45 +0000)]
Added KeyDescriptor for AA in case it signs.
Scott Cantor [Tue, 13 Sep 2005 04:54:05 +0000 (04:54 +0000)]
Trap known exceptions during request config processing.
Scott Cantor [Tue, 13 Sep 2005 04:44:18 +0000 (04:44 +0000)]
Trap known exceptions during request config processing.
Scott Cantor [Tue, 13 Sep 2005 04:07:11 +0000 (04:07 +0000)]
Trap known exceptions during request config processing.
Scott Cantor [Tue, 13 Sep 2005 04:06:13 +0000 (04:06 +0000)]
Comment out admin override to prevent accidents.
Scott Cantor [Wed, 7 Sep 2005 02:55:14 +0000 (02:55 +0000)]
BSD needs pthread header inline.
Scott Cantor [Wed, 7 Sep 2005 02:50:26 +0000 (02:50 +0000)]
Correct declaration of lseek.
Scott Cantor [Mon, 5 Sep 2005 22:38:53 +0000 (22:38 +0000)]
Added additional permissions, synced with FC3 policy 1.17.30-3.16
Scott Cantor [Thu, 1 Sep 2005 16:38:27 +0000 (16:38 +0000)]
Updated for 1.3a
Scott Cantor [Thu, 1 Sep 2005 16:16:05 +0000 (16:16 +0000)]
Updated version.
Scott Cantor [Thu, 1 Sep 2005 16:14:14 +0000 (16:14 +0000)]
Some disabled memory diagnostics, prepping for patch release.
Scott Cantor [Thu, 1 Sep 2005 15:47:30 +0000 (15:47 +0000)]
Revved spec file
Scott Cantor [Thu, 1 Sep 2005 15:38:13 +0000 (15:38 +0000)]
Fix for secadv
20050901 to clear headers in all authType Shib cases.
Scott Cantor [Fri, 12 Aug 2005 17:40:13 +0000 (17:40 +0000)]
Redirects were being totally mishandled.
Scott Cantor [Tue, 9 Aug 2005 20:10:42 +0000 (20:10 +0000)]
Factor log member out of cache entries.
Scott Cantor [Tue, 9 Aug 2005 19:14:50 +0000 (19:14 +0000)]
Change CVS properties
Scott Cantor [Tue, 9 Aug 2005 19:14:16 +0000 (19:14 +0000)]
Added a debug option to simplify bypassing trust checks.
Scott Cantor [Thu, 21 Jul 2005 21:48:04 +0000 (21:48 +0000)]
set ignores for msi directory
Scott Cantor [Thu, 21 Jul 2005 21:46:20 +0000 (21:46 +0000)]
Full XML version of installer output by WISE.
Scott Cantor [Thu, 21 Jul 2005 20:56:41 +0000 (20:56 +0000)]
Stop loading overrides into default application.
Scott Cantor [Thu, 21 Jul 2005 19:28:48 +0000 (19:28 +0000)]
Upped RPM rev
Scott Cantor [Wed, 20 Jul 2005 02:38:01 +0000 (02:38 +0000)]
Log failures instead of just bubbling them back to httpd.
Scott Cantor [Wed, 20 Jul 2005 02:35:31 +0000 (02:35 +0000)]
Reduce exceptions thrown under "ordinary" conditions.
Scott Cantor [Tue, 19 Jul 2005 20:26:06 +0000 (20:26 +0000)]
Moved to new base path.
Scott Cantor [Tue, 19 Jul 2005 18:44:43 +0000 (18:44 +0000)]
Initial check-in of install action scripts.
Scott Cantor [Tue, 19 Jul 2005 03:27:34 +0000 (03:27 +0000)]
Removing stale code.
Scott Cantor [Mon, 18 Jul 2005 17:54:11 +0000 (17:54 +0000)]
Corrected year.
Scott Cantor [Mon, 18 Jul 2005 01:06:23 +0000 (01:06 +0000)]
Switched remaining files to Apache license.
Scott Cantor [Mon, 18 Jul 2005 00:02:58 +0000 (00:02 +0000)]
Various updates.
Scott Cantor [Sun, 10 Jul 2005 02:31:41 +0000 (02:31 +0000)]
Changed default paths.
Scott Cantor [Sat, 9 Jul 2005 05:10:48 +0000 (05:10 +0000)]
Embed iterators inside metadata/trust wrappers to fix race conditions.
Scott Cantor [Fri, 8 Jul 2005 04:21:13 +0000 (04:21 +0000)]
Logout handler wasn't adding cookieProps to value.
Scott Cantor [Tue, 5 Jul 2005 21:01:53 +0000 (21:01 +0000)]
Block signing SAML 1.0 requests, stop propagating InvalidHandle error out unless told to.
Scott Cantor [Tue, 5 Jul 2005 21:01:12 +0000 (21:01 +0000)]
InvalidHandle exception no longer retryable.
Scott Cantor [Mon, 4 Jul 2005 20:07:16 +0000 (20:07 +0000)]
Further relax setAuthn for reuse of HTTP connections.
Scott Cantor [Mon, 4 Jul 2005 04:53:06 +0000 (04:53 +0000)]
Log adjustments.
Scott Cantor [Mon, 4 Jul 2005 02:01:09 +0000 (02:01 +0000)]
Upped spec release.
Scott Cantor [Sun, 3 Jul 2005 21:37:48 +0000 (21:37 +0000)]
Removed static keyword, breaks gcc4
Scott Cantor [Sun, 3 Jul 2005 20:12:20 +0000 (20:12 +0000)]
Update xsec.
Scott Cantor [Fri, 1 Jul 2005 20:10:33 +0000 (20:10 +0000)]
Ouch, missing AAP lock.
Scott Cantor [Fri, 1 Jul 2005 17:43:38 +0000 (17:43 +0000)]
Check for NameID before using it.
Scott Cantor [Fri, 1 Jul 2005 17:41:08 +0000 (17:41 +0000)]
Dispose of anything not issued by the authenticating IdP.
Scott Cantor [Fri, 1 Jul 2005 17:19:19 +0000 (17:19 +0000)]
Safer locking code.
Scott Cantor [Fri, 1 Jul 2005 15:13:47 +0000 (15:13 +0000)]
Switch to locker wrapper in AAP apply.
Scott Cantor [Fri, 1 Jul 2005 01:42:53 +0000 (01:42 +0000)]
Updated to xsec 1.2, converted to new HTTP Hook.
Scott Cantor [Fri, 1 Jul 2005 01:42:15 +0000 (01:42 +0000)]
Updated to xsec 1.2, moved HTTP Hook out.
Scott Cantor [Fri, 1 Jul 2005 01:41:46 +0000 (01:41 +0000)]
Updated to xsec 1.2
Scott Cantor [Fri, 1 Jul 2005 01:41:27 +0000 (01:41 +0000)]
Updated to xsec 1.2, removed dead code.
Scott Cantor [Fri, 1 Jul 2005 01:38:30 +0000 (01:38 +0000)]
Added HTTP auth settings.
Scott Cantor [Tue, 28 Jun 2005 03:10:28 +0000 (03:10 +0000)]
Undo CPP change.
Scott Cantor [Mon, 27 Jun 2005 18:00:24 +0000 (18:00 +0000)]
Try and hook CPPFLAGS
Scott Cantor [Mon, 27 Jun 2005 17:23:02 +0000 (17:23 +0000)]
Fixed authn check when https connections are reused.
Scott Cantor [Mon, 27 Jun 2005 04:13:28 +0000 (04:13 +0000)]
Move key generation inside try/catch.
Scott Cantor [Mon, 27 Jun 2005 00:27:02 +0000 (00:27 +0000)]
NSAPI 3.x fix
Scott Cantor [Sat, 25 Jun 2005 05:44:22 +0000 (05:44 +0000)]
Skip authn assertions when checking expiration.
Scott Cantor [Sat, 25 Jun 2005 03:47:16 +0000 (03:47 +0000)]
Auto-detection of cred format.
Scott Cantor [Fri, 24 Jun 2005 19:24:35 +0000 (19:24 +0000)]
Enable user-specified signing algorithms.
Scott Cantor [Fri, 24 Jun 2005 19:13:28 +0000 (19:13 +0000)]
Hide signing/hashing algorithm constants from callers.
Scott Cantor [Thu, 23 Jun 2005 19:34:50 +0000 (19:34 +0000)]
Add hook for specifying signing algorithms.
Scott Cantor [Thu, 23 Jun 2005 14:43:27 +0000 (14:43 +0000)]
Handle null TARGET value.
Scott Cantor [Wed, 22 Jun 2005 23:47:41 +0000 (23:47 +0000)]
Require signing if binding is unauthenticated.
Scott Cantor [Wed, 22 Jun 2005 23:47:18 +0000 (23:47 +0000)]
Add indication of whether binding was authenticated.
Scott Cantor [Wed, 22 Jun 2005 22:04:05 +0000 (22:04 +0000)]
New artifact mapper, handles signing, multiple endpoints.
Scott Cantor [Wed, 22 Jun 2005 18:51:44 +0000 (18:51 +0000)]
Forgot to store off pointers.
Scott Cantor [Tue, 21 Jun 2005 20:57:43 +0000 (20:57 +0000)]
Handle missing NameID Format.
Scott Cantor [Tue, 21 Jun 2005 03:34:17 +0000 (03:34 +0000)]
Moved logo/css file alias.
Scott Cantor [Tue, 21 Jun 2005 03:32:50 +0000 (03:32 +0000)]
Synchronized/unioned SP endpoints and moved Java SSO to 443.
Scott Cantor [Tue, 21 Jun 2005 02:17:23 +0000 (02:17 +0000)]
Updated certs.