Ulrich Grave
7f5c31995e
Add relyingPartyRegistrationId to AbstractSaml2AuthenticationRequest
...
Closes gh-11195
2022-05-17 16:41:44 -06:00
Marcus Da Coregio
995b2918bb
Remove SAML Deprecations
...
Closes gh-11077
2022-05-06 10:15:42 -03:00
Josh Cummings
c93c6b928e
Polish Relay State Resolver
...
Issue gh-11065
2022-05-05 17:42:02 -06:00
sebastiano
f7a43e4989
Allow custom relay state
...
Closes gh-11065
2022-05-05 17:42:01 -06:00
Ulrich Grave
c6038b1ea3
Add Jackson Support for Saml2AuthenticationException
...
Closes gh-11169
2022-05-02 16:24:43 -05:00
Marcus Da Coregio
cfb1745906
Deprecate Saml2AuthenticationRequestFactory
...
Closes gh-11080
2022-04-08 09:33:41 -03:00
Steve Riesenberg
8aa7029d07
Fix checkstyle errors
...
Issue gh-10989
2022-03-18 22:53:29 -05:00
Josh Cummings
070514b9dd
Polish InResponseTo support
...
- Moved methods so methods are listed before the methods they call
- Adjusted exception handling so no exceptions are eaten
- Adjusted so that malformed_request_data is returned with request data is malformed
- Refactored methods to have only immutable method parameters
- Removed usage of Stream API
- Moved AuthnRequestUnmarshaller into static block so that only looked
up once
Issue gh-9174
2022-03-15 13:06:32 -06:00
Elias Lousseief
4aa9420047
Add support for validation of InResponseTo
...
Whenever an InResponseTo is present in the SAML2 response and / or any of its assertions, it will be validated against the stored SAML2 request. If the request is missing or the ID of the request does not match the InResponseTo, validation fails. If there is no InResponseTo, no validation of it is done (as opposed to checking whether there is a saved request or not and then failing based on that).
Closes gh-9174
2022-03-15 13:06:32 -06:00
Elias Lousseief
a17cf9e814
Refactored OpenSaml4AuthenticationProviderTests
...
Factored out repeatedly used code for signing a request.
2022-03-15 13:06:31 -06:00
Marcus Da Coregio
1cbe7a75d3
Add SAML 2.0 Login XML Support
...
Closes gh-9012
2022-03-09 10:40:26 -03:00
Josh Cummings
87828df9d5
Polish EntityDescriptor Customizer
...
Issue gh-10839
2022-03-04 10:40:30 -07:00
Ulrich Grave
3602eff1ac
Add method to customize EntityDescriptor
...
Closes gh-10839
2022-03-04 10:40:30 -07:00
Josh Cummings
346038d66c
Polish Formatting
...
Issue gh-10799
2022-03-02 16:36:23 -07:00
Sander van Schouwenburg
c734b4b39e
Preserve order of RelyingPartRegistration credentials
...
Issue gh-10799
2022-03-02 16:36:23 -07:00
Josh Cummings
5b9a45de01
Replace Apache Commons Base64 Decoding
...
Issue gh-10923
2022-03-02 16:30:21 -07:00
Josh Cummings
0b59e7797d
Use RFC2045 Encoding for SAML 2.0 Logout
...
Closes gh-10923
2022-03-02 16:30:21 -07:00
Josh Cummings
4ede1feae5
Polish Saml2 Jackson Support
...
Issue gh-10905
2022-03-01 14:17:17 -07:00
Ulrich Grave
2334610fa9
Add Jackson Support for Saml2 Module
...
Closes gh-10905
2022-03-01 14:17:17 -07:00
Filip Hanik
6e5bb71466
Change HashSet to LinkedHashSet
...
For various RelyingPartyRegistration.credentials to preserve order of insertion.
Issue gh-10799
2022-02-28 15:01:58 -07:00
Josh Cummings
6dbd88a5a4
Remove WantAssertionsSigned
...
WantAssertionsSigned requires that asserting parties sign the
assertions. This does not reflect how Spring Security actually
behaves, creating behavior mismatches.
Closes gh-10844
2022-02-22 08:14:05 -07:00
Josh Cummings
b451ede189
Add Skipping Decryption Error Message
...
Closes gh-10220
2022-02-16 16:43:31 -07:00
Josh Cummings
c6e5781679
Correct Test
...
Issue gh-10220
2022-02-16 16:43:31 -07:00
Josh Cummings
5cda362c47
Collect All Validation Errors
...
- OpenSaml4AuthenticationProvider now collects all validation errors
instead of treating some as their own exception
Issue gh-10220
2022-02-16 16:43:31 -07:00
Josh Cummings
b4dbcd6b2d
Add OpenSamlAssertingPartyDetails
...
Closes gh-10781
2022-02-07 14:43:06 -07:00
Josh Cummings
28747ca89c
Fix Checkstyle Error
...
Issue gh-9696
2022-02-04 20:07:41 -07:00
Josh Cummings
e8be907edf
Polish Testing for Custom Attributes Values
...
- Moved construction and management of custom objects
into TestCustomOpenSamlObjects
Issue gh-9696
2022-02-04 20:04:03 -07:00
pelesic
f626d11c6e
Add OpenSaml custom types to Saml2AuthenticatedPrincipal
...
OpenSaml custom types are added to Saml2AutehnticatedPrincipal as
attributes.
Closes gh-9696
2022-02-04 20:04:03 -07:00
Josh Cummings
965e689461
Add EntitiesDescriptor Support
...
Closes gh-10782
2022-01-31 13:32:12 -07:00
Josh Cummings
60eead9ceb
Add Session Index Support
...
Closes gh-10613
2022-01-28 12:21:44 -07:00
Josh Cummings
df3593f2dd
Deprecate Saml2 AuthnRequest Classes
...
Issue gh-10355
2022-01-24 16:18:33 -07:00
Josh Cummings
5a2556879a
Add Saml2AuthenticationRequestResolver
...
Closes gh-10355
2022-01-24 16:18:33 -07:00
Marcus Da Coregio
861368bda5
Make Saml2AuthenticationRequests serializable
...
Closes gh-10550
2022-01-24 09:24:33 -03:00
Josh Cummings
d493598e17
Polish LogoutRequest#EncryptedID Support
...
Issue gh-10663
2022-01-14 14:47:45 -07:00
Robert Stoiber
c1bea329ba
Enabled SAML LogoutRequests with EncryptedID
...
The OpenSamlLogoutRequestValidator validates the subject to be logged out.
Formerly this was done only using the NameID from the OpenSamlLogoutRequest.
Now the EncryptedID is also supported, Since the SAML2 Standard also allows
the EncryptedID as subject identifiers,
- added EncryptedID as valid subject in OpenSamlLogoutRequestValidator
- added test
Closes gh-10663
2022-01-14 14:47:36 -07:00
Josh Cummings
45b7fed884
Remove SAML 2.0 Logout Default
...
Closes gh-10607
2022-01-03 13:14:12 -07:00
Josh Cummings
cb008fa062
Support No SingleLogoutServiceLocation
...
Closes gh-10674
2022-01-03 13:14:06 -07:00
Josh Cummings
cbf0e1da68
Remove commons-logging from saml2
...
Issue gh-10499
2021-12-16 10:15:58 -07:00
Arnaud Mergey
a17dfb8456
Add SP NameIDFormat Support
...
closes gh-9115
2021-12-01 13:02:20 -07:00
Marcus Da Coregio
db60df2f9c
Update to Spring Framework 6.0
...
Issue gh-10360
2021-11-01 09:02:42 -03:00
Marcus Da Coregio
010f719344
Upgrade to JDK 17
...
Closes gh-10343
2021-11-01 09:02:42 -03:00
Vladimir Surcov
7330ec41e4
Adding keyInfo section to LogoutRequest from RP side
...
Issue gh-10438
2021-10-29 11:00:19 -06:00
Emil Sierżęga
04b47c5928
Fixed various broken links in Javadocs
2021-10-21 11:47:04 +02:00
Rob Winch
f836897190
Checkstyle Fixes
...
- Javadoc tag ordering
- Private constructors before inner classes
Issue gh-10394
2021-10-18 21:03:35 -05:00
Marcus Da Coregio
00084cf986
Add saml2.ValidIssuers parameter
...
Adds the saml2.ValidIssuers parameter into SAML 2.0 Assertion Validators
Closes gh-10335
2021-10-14 09:21:43 -06:00
Marcus Da Coregio
02b2fcc6f0
Restore ManagementConfigurationPlugin
...
Issue gh-9615
2021-10-05 11:23:29 -03:00
Marcus Da Coregio
d2e5f2ae0d
Update Gradle to 7.2
...
Closes gh-9615
2021-10-04 15:19:40 -03:00
Marcus Da Coregio
7112ee3eaa
Allow SAML 2.0 loginProcessingURL without registrationId
...
Closes gh-10176
2021-10-04 09:54:40 -03:00
Marcus Da Coregio
e36e2b2a97
Move Saml2AuthnRequestRepository to web package
...
Moving to solve package tangles
Issue gh-9185
2021-09-29 14:10:39 -03:00
Daniel Garnier-Moiroux
2fb8e66bc8
Saml2WebSsoAuthenticationFilter adds authentication details
...
Closes gh-7722
2021-09-27 11:44:30 -03:00