Cwikius-Spring
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,120 Commits 30 Branches 330 Tags 114 MiB
Commit Graph

227 Commits

Author SHA1 Message Date
Josh Cummings 070514b9dd
Polish InResponseTo support 
- Moved methods so methods are listed before the methods they call
- Adjusted exception handling so no exceptions are eaten
- Adjusted so that malformed_request_data is returned with request data is malformed
- Refactored methods to have only immutable method parameters
- Removed usage of Stream API
- Moved AuthnRequestUnmarshaller into static block so that only looked
up once

Issue gh-9174
 2022-03-15 13:06:32 -06:00
Elias Lousseief 4aa9420047
Add support for validation of InResponseTo 
Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that).

Closes gh-9174
 2022-03-15 13:06:32 -06:00
Elias Lousseief a17cf9e814
Refactored OpenSaml4AuthenticationProviderTests 
Factored out repeatedly used code for signing a request.
 2022-03-15 13:06:31 -06:00
Marcus Da Coregio 1cbe7a75d3 Add SAML 2.0 Login XML Support 
Closes gh-9012
 2022-03-09 10:40:26 -03:00
Josh Cummings 87828df9d5 Polish EntityDescriptor Customizer 
Issue gh-10839
 2022-03-04 10:40:30 -07:00
Ulrich Grave 3602eff1ac Add method to customize EntityDescriptor 
Closes gh-10839
 2022-03-04 10:40:30 -07:00
Josh Cummings 346038d66c Polish Formatting 
Issue gh-10799
 2022-03-02 16:36:23 -07:00
Sander van Schouwenburg c734b4b39e Preserve order of RelyingPartRegistration credentials 
Issue gh-10799
 2022-03-02 16:36:23 -07:00
Josh Cummings 5b9a45de01 Replace Apache Commons Base64 Decoding 
Issue gh-10923
 2022-03-02 16:30:21 -07:00
Josh Cummings 0b59e7797d Use RFC2045 Encoding for SAML 2.0 Logout 
Closes gh-10923
 2022-03-02 16:30:21 -07:00
Josh Cummings 4ede1feae5 Polish Saml2 Jackson Support 
Issue gh-10905
 2022-03-01 14:17:17 -07:00
Ulrich Grave 2334610fa9 Add Jackson Support for Saml2 Module 
Closes gh-10905
 2022-03-01 14:17:17 -07:00
Filip Hanik 6e5bb71466 Change HashSet to LinkedHashSet 
For various RelyingPartyRegistration.credentials to preserve order of insertion.

Issue gh-10799
 2022-02-28 15:01:58 -07:00
Josh Cummings 6dbd88a5a4 Remove WantAssertionsSigned 
WantAssertionsSigned requires that asserting parties sign the
assertions. This does not reflect how Spring Security actually
behaves, creating behavior mismatches.

Closes gh-10844
 2022-02-22 08:14:05 -07:00
Josh Cummings b451ede189 Add Skipping Decryption Error Message 
Closes gh-10220
 2022-02-16 16:43:31 -07:00
Josh Cummings c6e5781679 Correct Test 
Issue gh-10220
 2022-02-16 16:43:31 -07:00
Josh Cummings 5cda362c47 Collect All Validation Errors 
- OpenSaml4AuthenticationProvider now collects all validation errors
instead of treating some as their own exception

Issue gh-10220
 2022-02-16 16:43:31 -07:00
Josh Cummings b4dbcd6b2d Add OpenSamlAssertingPartyDetails 
Closes gh-10781
 2022-02-07 14:43:06 -07:00
Josh Cummings 28747ca89c Fix Checkstyle Error 
Issue gh-9696
 2022-02-04 20:07:41 -07:00
Josh Cummings e8be907edf Polish Testing for Custom Attributes Values 
- Moved construction and management of custom objects
into TestCustomOpenSamlObjects

Issue gh-9696
 2022-02-04 20:04:03 -07:00
pelesic f626d11c6e Add OpenSaml custom types to Saml2AuthenticatedPrincipal 
OpenSaml custom types are added to Saml2AutehnticatedPrincipal as
attributes.

Closes gh-9696
 2022-02-04 20:04:03 -07:00
Josh Cummings 965e689461 Add EntitiesDescriptor Support 
Closes gh-10782
 2022-01-31 13:32:12 -07:00
Josh Cummings 60eead9ceb Add Session Index Support 
Closes gh-10613
 2022-01-28 12:21:44 -07:00
Josh Cummings df3593f2dd Deprecate Saml2 AuthnRequest Classes 
Issue gh-10355
 2022-01-24 16:18:33 -07:00
Josh Cummings 5a2556879a Add Saml2AuthenticationRequestResolver 
Closes gh-10355
 2022-01-24 16:18:33 -07:00
Marcus Da Coregio 861368bda5 Make Saml2AuthenticationRequests serializable 
Closes gh-10550
 2022-01-24 09:24:33 -03:00
Josh Cummings d493598e17 Polish LogoutRequest#EncryptedID Support 
Issue gh-10663
 2022-01-14 14:47:45 -07:00
Robert Stoiber c1bea329ba Enabled SAML LogoutRequests with EncryptedID 
The OpenSamlLogoutRequestValidator validates the subject to be logged out.
Formerly this was done only using the NameID from the OpenSamlLogoutRequest.
Now the EncryptedID is also supported, Since the SAML2 Standard also allows
the EncryptedID as subject identifiers,

- added EncryptedID as valid subject in OpenSamlLogoutRequestValidator
- added test

Closes gh-10663
 2022-01-14 14:47:36 -07:00
Josh Cummings 45b7fed884 Remove SAML 2.0 Logout Default 
Closes gh-10607
 2022-01-03 13:14:12 -07:00
Josh Cummings cb008fa062 Support No SingleLogoutServiceLocation 
Closes gh-10674
 2022-01-03 13:14:06 -07:00
Josh Cummings cbf0e1da68 Remove commons-logging from saml2 
Issue gh-10499
 2021-12-16 10:15:58 -07:00
Arnaud Mergey a17dfb8456 Add SP NameIDFormat Support 
closes gh-9115
 2021-12-01 13:02:20 -07:00
Marcus Da Coregio db60df2f9c Update to Spring Framework 6.0 
Issue gh-10360
 2021-11-01 09:02:42 -03:00
Marcus Da Coregio 010f719344 Upgrade to JDK 17 
Closes gh-10343
 2021-11-01 09:02:42 -03:00
Vladimir Surcov 7330ec41e4 Adding keyInfo section to LogoutRequest from RP side 
Issue gh-10438
 2021-10-29 11:00:19 -06:00
Emil Sierżęga 04b47c5928 Fixed various broken links in Javadocs 2021-10-21 11:47:04 +02:00
Rob Winch f836897190 Checkstyle Fixes 
- Javadoc tag ordering
- Private constructors before inner classes

Issue gh-10394
 2021-10-18 21:03:35 -05:00
Marcus Da Coregio 00084cf986 Add saml2.ValidIssuers parameter 
Adds the saml2.ValidIssuers parameter into SAML 2.0 Assertion Validators

Closes gh-10335
 2021-10-14 09:21:43 -06:00
Marcus Da Coregio 02b2fcc6f0 Restore ManagementConfigurationPlugin 
Issue gh-9615
 2021-10-05 11:23:29 -03:00
Marcus Da Coregio d2e5f2ae0d Update Gradle to 7.2 
Closes gh-9615
 2021-10-04 15:19:40 -03:00
Marcus Da Coregio 7112ee3eaa Allow SAML 2.0 loginProcessingURL without registrationId 
Closes gh-10176
 2021-10-04 09:54:40 -03:00
Marcus Da Coregio e36e2b2a97 Move Saml2AuthnRequestRepository to web package 
Moving to solve package tangles

Issue gh-9185
 2021-09-29 14:10:39 -03:00
Daniel Garnier-Moiroux 2fb8e66bc8 Saml2WebSsoAuthenticationFilter adds authentication details 
Closes gh-7722
 2021-09-27 11:44:30 -03:00
Josh Cummings 194993ad1a Add Saml2ParameterNames 
Closes gh-10270
 2021-09-14 17:40:12 -06:00
Josh Cummings c63d618b26 Add Single Logout Support 
Closes gh-8731
 2021-09-13 16:39:48 -06:00
Josh Cummings 6488295cad Add RelyingPartyRegistrationResolver 
Closes gh-9486
 2021-09-13 16:39:48 -06:00
Josh Cummings f5a525e740 Add Registration to Saml2Authentication 
Closes gh-9487
 2021-09-13 16:39:48 -06:00
Josh Cummings 822e59af45 useJUnitPlatform for SAML 2.0 Tests 
Issue gh-9467
 2021-09-13 16:39:48 -06:00
Russell Allen 1806cebd64 Fix Assertion 
Closes gh-10055
 2021-08-09 10:09:06 -03:00
Josh Cummings d5c953b106
Polish Saml2AuthenticationRequestRepository 
- Moved docs into AuthnRequest section, changed links to be more
semantically valuable to search engines
- Moved tests to be nearer to similar tests

Issue gh-9185
 2021-07-27 14:56:23 -06:00