spring-security

mirror of https://github.com/spring-projects/spring-security.git synced 2025-02-24 07:37:50 +00:00

Author	SHA1	Message	Date
Josh Cummings	cf29bf996c	Polish InResponseTo support - Moved methods so methods are listed before the methods they call - Adjusted exception handling so no exceptions are eaten - Adjusted so that malformed_request_data is returned with request data is malformed - Refactored methods to have only immutable method parameters - Removed usage of Stream API - Moved AuthnRequestUnmarshaller into static block so that only looked up once Issue gh-9174	2022-03-15 14:06:58 -06:00
Elias Lousseief	3c878549b5	Add support for validation of InResponseTo Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that). Closes gh-9174	2022-03-15 14:06:57 -06:00
Elias Lousseief	836f203d44	Refactored OpenSaml4AuthenticationProviderTests Factored out repeatedly used code for signing a request.	2022-03-15 14:06:57 -06:00
Josh Cummings	070514b9dd	Polish InResponseTo support - Moved methods so methods are listed before the methods they call - Adjusted exception handling so no exceptions are eaten - Adjusted so that malformed_request_data is returned with request data is malformed - Refactored methods to have only immutable method parameters - Removed usage of Stream API - Moved AuthnRequestUnmarshaller into static block so that only looked up once Issue gh-9174	2022-03-15 13:06:32 -06:00
Elias Lousseief	4aa9420047	Add support for validation of InResponseTo Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that). Closes gh-9174	2022-03-15 13:06:32 -06:00
Elias Lousseief	a17cf9e814	Refactored OpenSaml4AuthenticationProviderTests Factored out repeatedly used code for signing a request.	2022-03-15 13:06:31 -06:00
Marcus Da Coregio	1cbe7a75d3	Add SAML 2.0 Login XML Support Closes gh-9012	2022-03-09 10:40:26 -03:00
Marcus Da Coregio	73f839312d	Add SAML 2.0 Login XML Support Closes gh-9012	2022-03-09 09:18:01 -03:00
Josh Cummings	ff87cfce3a	Polish EntityDescriptor Customizer Issue gh-10839	2022-03-04 10:42:04 -07:00
Ulrich Grave	d225205bf2	Add method to customize EntityDescriptor Closes gh-10839	2022-03-04 10:42:04 -07:00
Josh Cummings	87828df9d5	Polish EntityDescriptor Customizer Issue gh-10839	2022-03-04 10:40:30 -07:00
Ulrich Grave	3602eff1ac	Add method to customize EntityDescriptor Closes gh-10839	2022-03-04 10:40:30 -07:00
Josh Cummings	304e89041c	Polish Formatting Issue gh-10799	2022-03-02 16:40:13 -07:00
Sander van Schouwenburg	f1a76efc2d	Preserve order of RelyingPartRegistration credentials Issue gh-10799	2022-03-02 16:40:13 -07:00
Josh Cummings	963251314b	Replace Apache Commons Base64 Decoding Issue gh-10923	2022-03-02 16:40:11 -07:00
Josh Cummings	ee061f3659	Use RFC2045 Encoding for SAML 2.0 Logout Closes gh-10923	2022-03-02 16:39:31 -07:00
Josh Cummings	923c61e9d2	Polish Formatting Issue gh-10799	2022-03-02 16:37:58 -07:00
Sander van Schouwenburg	14d0663ae2	Preserve order of RelyingPartRegistration credentials Issue gh-10799	2022-03-02 16:37:58 -07:00
Josh Cummings	346038d66c	Polish Formatting Issue gh-10799	2022-03-02 16:36:23 -07:00
Sander van Schouwenburg	c734b4b39e	Preserve order of RelyingPartRegistration credentials Issue gh-10799	2022-03-02 16:36:23 -07:00
Josh Cummings	5b9a45de01	Replace Apache Commons Base64 Decoding Issue gh-10923	2022-03-02 16:30:21 -07:00
Josh Cummings	0b59e7797d	Use RFC2045 Encoding for SAML 2.0 Logout Closes gh-10923	2022-03-02 16:30:21 -07:00
Josh Cummings	7a02bd14c1	Replace Apache Commons Base64 Decoding Issue gh-10923	2022-03-02 16:19:03 -07:00
Josh Cummings	238616da80	Use RFC2045 Encoding for SAML 2.0 Logout Closes gh-10923	2022-03-02 16:18:34 -07:00
Josh Cummings	4ede1feae5	Polish Saml2 Jackson Support Issue gh-10905	2022-03-01 14:17:17 -07:00
Ulrich Grave	2334610fa9	Add Jackson Support for Saml2 Module Closes gh-10905	2022-03-01 14:17:17 -07:00
Josh Cummings	6c3d183a94	Polish Saml2 Jackson Support Issue gh-10905	2022-03-01 13:56:02 -07:00
Ulrich Grave	df84826c95	Add Jackson Support for Saml2 Module Closes gh-10905	2022-03-01 12:07:55 -07:00
Filip Hanik	47871562ca	Change HashSet to LinkedHashSet For various RelyingPartyRegistration.credentials to preserve order of insertion. Issue gh-10799	2022-02-28 15:02:03 -07:00
Filip Hanik	6e5bb71466	Change HashSet to LinkedHashSet For various RelyingPartyRegistration.credentials to preserve order of insertion. Issue gh-10799	2022-02-28 15:01:58 -07:00
Filip Hanik	70b52a001b	Change HashSet to LinkedHashSet For various RelyingPartyRegistration.credentials to preserve order of insertion. Issue gh-10799	2022-02-28 14:57:04 -07:00
Josh Cummings	6dbd88a5a4	Remove WantAssertionsSigned WantAssertionsSigned requires that asserting parties sign the assertions. This does not reflect how Spring Security actually behaves, creating behavior mismatches. Closes gh-10844	2022-02-22 08:14:05 -07:00
Josh Cummings	3d878549f4	Remove WantAssertionsSigned WantAssertionsSigned requires that asserting parties sign the assertions. This does not reflect how Spring Security actually behaves, creating behavior mismatches. Closes gh-10844	2022-02-18 11:43:25 -07:00
Josh Cummings	b451ede189	Add Skipping Decryption Error Message Closes gh-10220	2022-02-16 16:43:31 -07:00
Josh Cummings	c6e5781679	Correct Test Issue gh-10220	2022-02-16 16:43:31 -07:00
Josh Cummings	5cda362c47	Collect All Validation Errors - OpenSaml4AuthenticationProvider now collects all validation errors instead of treating some as their own exception Issue gh-10220	2022-02-16 16:43:31 -07:00
Josh Cummings	97c18478e5	Add Skipping Decryption Error Message Closes gh-10220	2022-02-16 16:10:36 -07:00
Josh Cummings	399562b2a8	Correct Test Issue gh-10220	2022-02-16 16:10:36 -07:00
Josh Cummings	836335dc89	Collect All Validation Errors - OpenSaml4AuthenticationProvider now collects all validation errors instead of treating some as their own exception Issue gh-10220	2022-02-16 16:10:19 -07:00
Josh Cummings	b4dbcd6b2d	Add OpenSamlAssertingPartyDetails Closes gh-10781	2022-02-07 14:43:06 -07:00
Josh Cummings	541a1e48b3	Add OpenSamlAssertingPartyDetails Closes gh-10781	2022-02-07 14:42:17 -07:00
Josh Cummings	28747ca89c	Fix Checkstyle Error Issue gh-9696	2022-02-04 20:07:41 -07:00
Josh Cummings	5c4178beb7	Fix Checkstyle Error Issue gh-9696	2022-02-04 20:07:17 -07:00
Josh Cummings	e8be907edf	Polish Testing for Custom Attributes Values - Moved construction and management of custom objects into TestCustomOpenSamlObjects Issue gh-9696	2022-02-04 20:04:03 -07:00
pelesic	f626d11c6e	Add OpenSaml custom types to Saml2AuthenticatedPrincipal OpenSaml custom types are added to Saml2AutehnticatedPrincipal as attributes. Closes gh-9696	2022-02-04 20:04:03 -07:00
Josh Cummings	70bb588a25	Polish Testing for Custom Attributes Values - Moved construction and management of custom objects into TestCustomOpenSamlObjects Issue gh-9696	2022-02-04 19:57:54 -07:00
pelesic	3cc7f384e6	Add OpenSaml custom types to Saml2AuthenticatedPrincipal OpenSaml custom types are added to Saml2AutehnticatedPrincipal as attributes. Closes gh-9696	2022-02-04 13:41:41 -07:00
Josh Cummings	965e689461	Add EntitiesDescriptor Support Closes gh-10782	2022-01-31 13:32:12 -07:00
Josh Cummings	4095d89bb3	Add EntitiesDescriptor Support Closes gh-10782	2022-01-31 13:13:21 -07:00
Josh Cummings	60eead9ceb	Add Session Index Support Closes gh-10613	2022-01-28 12:21:44 -07:00

1 2 3 4 5 ...

367 Commits