summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* bugfix: SLO was broken due to incorrect handling of NameID objects.HEADorigin/masterorigin/HEADmasterJaime Pérez Crespo2017-01-311-4/+7
| | | | The sspmod_saml_SP_Logout_Store::logoutSessions() method was still expecting the NameID to be an array.
* Update the external OAuth library included with the oauth module.Jaime Pérez Crespo2017-01-311-808/+830
| | | | This is supposed to provide better support for OAuth 1.0 Revision A.
* Merge pull request #554 from tvdijen/patch-1Thijs Kinkhorst2017-01-311-2/+4
|\ | | | | Raise exception when memcache-server is down
| * Raise exception when memcache-server is downTim van Dijen2017-01-291-2/+4
| | | | | | The exception was never raised because $stats will be array(false) on failure instead of just false.
* | Merge pull request #548 from portrino/linkedin-improvementJaime Pérez Crespo2017-01-301-6/+40
|\ \ | | | | | | adds `flatten()` method to put also the nested elements in $userdata …
| * | adds `flatten()` method to put also the nested elements in $userdata (e.g. ↵dev2017-01-191-6/+40
| | | | | | | | | | | | location) which are retrieved from linkedIn into the resulting attributes array
* | | Merge pull request #550 from tdiscuit/masterThijs Kinkhorst2017-01-301-1/+1
|\ \ \ | |_|/ |/| | Fixed typo in core:TargetedID AuthProc filter
| * | Typo fixTyler Antonio2017-01-231-1/+1
|/ /
* | Merge pull request #509 from tdiscuit/masterJaime Pérez Crespo2017-01-234-0/+53
|\ \ | |/ |/| Add ability to define additional attributes on ContactPerson element
| * Removed changes to composer.jsonTyler Antonio2017-01-201-1/+1
| |
| * Split condition on multiple lines and added strict comparisonTyler Antonio2017-01-201-1/+4
| |
| * Fixed errors in documentationTyler Antonio2017-01-131-2/+2
| |
| * Added documentation for contactPerson attributesTyler Antonio2016-11-151-0/+31
| |
| * Use count() instead of empty().Tyler Antonio2016-11-091-1/+1
| | | | | | | | Cannot provide array_filter() output directly to empty() in conditional in PHP <= 5.4.
| * Address issues from unit testsTyler Antonio2016-11-092-1/+2
| |
| * Add ability to define additional attributes on ContactPerson elementTyler Antonio2016-11-093-1/+19
| |
* | Allow standard ports when evaluating trusted URLs.Jaime Pérez Crespo2017-01-161-2/+9
| | | | | | | | If a standard port is specified, then ignore it. Otherwise, include the port in the check so that non-standard ports must be whitelisted explicitly.
* | Minor fixes.Jaime Pérez Crespo2017-01-125-107/+113
| | | | | | | | Formatting, namespaces, phpdoc.
* | Merge branch 'store-psr4' of https://github.com/sgomez/simplesamlphp into ↵Jaime Pérez Crespo2017-01-1213-58/+382
|\ \ | | | | | | | | | sgomez-store-psr4
| * | Modified SimpleSAML_Store to PSR-4Sergio Gomez2016-12-0513-58/+382
| | |
* | | Update the SAML2 library and start using the new \SAML2\XML\saml\NameID objects.Jaime Pérez Crespo2017-01-1112-94/+123
| | | | | | | | | | | | This enables too the implementation of additional contact attributes, as requested in #509 to support the SIRTFI framework.
* | | Reformat code of the table-printing template.Jaime Pérez2017-01-101-97/+104
| | |
* | | Minor formatting and phpdoc fixes.Jaime Pérez2017-01-101-57/+42
| | |
* | | Remove private, old der2pem() and pem2der() methods in X509userCert.Jaime Pérez2017-01-101-32/+1
| | |
* | | Merge branch 'master' of github.com:simplesamlphp/simplesamlphpJaime Pérez2017-01-1012-0/+70
|\ \ \
| * \ \ Merge pull request #524 from ghalse/enhancement/za-discopowerJaime Pérez Crespo2017-01-1012-0/+70
| |\ \ \ | | | | | | | | | | Make provision for a "South Africa" tab
| | * | | Make provision for a "South Africa" tabGuy Halse2016-12-0212-0/+70
| | | | |
* | | | | Add a couple of methods to handle conversion between PEM and DER.Jaime Pérez2017-01-102-0/+95
| | | | | | | | | | | | | | | | | | | | This resolves #476.
* | | | | Minor phpdoc fixes.Jaime Pérez2017-01-101-6/+5
| | | | |
* | | | | Minor formatting and phpdoc fixes.Jaime Pérez2017-01-101-8/+10
|/ / / /
* | | | Merge pull request #533 from ghalse/patch/languagecookieJaime Pérez Crespo2017-01-092-1/+4
|\ \ \ \ | | | | | | | | | | Allow the language cookie to be secured
| * | | | Allow the language cookie to be securedGuy Halse2016-12-152-1/+4
| | | | |
* | | | | Add a .gitattributes file to filter some files and directories out of the ↵Jaime Pérez2017-01-091-0/+11
| | | | | | | | | | | | | | | | | | | | exported package.
* | | | | bugfix: Discopower ignored filtering of hide.from.discovery metadata propertyOndrej Velisek2017-01-091-1/+1
| | | | |
* | | | | Merge pull request #538 from tvdijen/patch-6Jaime Pérez Crespo2016-12-231-1/+1
|\ \ \ \ \ | | | | | | | | | | | | Fix typo
| * | | | | Fix typoTim van Dijen2016-12-221-1/+1
|/ / / / /
* | | | | Update the documentation for the new, custom metadata storage handlers.Jaime Pérez2016-12-222-36/+45
| | | | | | | | | | | | | | | | | | | | Minor format and exception message fixes, plus add information about the different communication channels we have today.
* | | | | Adding support for custom metadata storage handlers.Andreas Åkre Solberg2016-12-212-6/+44
|/ / / /
* | | | Remove slightly too informal "Too bad" from login screen.Thijs Kinkhorst2016-12-1436-38/+38
| | | | | | | | | | | | | | | | cf. 3605187996445a06c5bf57375664edfead752f4c
* | | | bugfix: Make sure a persistent NameID is not generated by default when the ↵Jaime Pérez2016-12-121-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | UserID is missing in the state array. This allowed misconfigured IdPs (i.e. those without both a PersistenNameID authproc filter, a “userid.attribute” configuration option and no “eduPersonPrincipalName” attribute available after running all the authentication processing filters) to generate a persistent NameID based on “null”, effectively giving all users the same identifier.
* | | | bugfix: Make sure empty strings are not acceptable as a UserID.Jaime Pérez2016-12-121-0/+6
| | | |
* | | | bugfix: When obtaining a UserID for the state array prior to running ↵Jaime Pérez2016-12-121-0/+1
| | | | | | | | | | | | | | | | authproc filters, if the source attribute had multiple values a warning was logged but the UserID was still recorded.
* | | | Reformat the sspmod_saml_Message class, enhance phpdoc and prevent some ↵Jaime Pérez2016-12-091-796/+847
| | | | | | | | | | | | | | | | | | | | | | | | | | | | possible bugs: - Variables possibly undefined when first used. - Usage of XMLSecurityKey class without proper namespace.
* | | | bugfix: In case an empty SubjectConfirmation is received, an appropriate ↵Jaime Pérez2016-12-091-0/+6
| |/ / |/| | | | | | | | | | | | | | | | | | | | | | | error must be thrown. This resolves #530. There are two problems here: - When only one SubjectConfirmation is received and it is empty, an error should be thrown. However, the error would be a not very descriptive message warning about access to a non-property in a null object. Something more descriptive should be in place. - Additionally, in PHP 7.0 this is an error and not an exception, and then the code continues to execute, effectively allowing assertions without a proper SubjectConfirmation element. This is wrong according to the standard.
* | | Fix typo.Jaime Pérez2016-12-051-2/+1
| | |
* | | Merge branch 'master' of github.com:simplesamlphp/simplesamlphpAndreas Åkre Solberg2016-12-053-5/+5
|\ \ \
| * | | bugfix: Make sure to properly check the output of ↵Jaime Pérez2016-12-031-1/+1
| |/ / | | | | | | | | | RobRichards\XMLSecDSig::verify().
| * | Fix small doc typosThijs Kinkhorst2016-12-012-4/+4
| | |
* | | Add translated error info in data for error template. This is needed in ↵Andreas Åkre Solberg2016-12-051-0/+2
|/ / | | | | | | order for theming error page with Twig.
* | Convert from CRLF to LF a couple of files remaining.Jaime Pérez2016-11-302-125/+125
| |
* | Change the schemas to use LF for line endings instead of CRLF.Jaime Pérez2016-11-3035-4666/+4666
| | | | | | | | This resolves #523.
* | bugfix: Missing ‘)’.Jaime Pérez2016-11-241-1/+1
| |
* | Handle renamed/non-standard langcodesHanne Moa2016-11-242-0/+25
| |
* | Allow passing driver options to the SimpleSAML\Database class.Jaime Pérez2016-11-221-1/+1
| |
* | bugfix: bugfix: Make sure empty strings are not acceptable for NameID ↵Jaime Pérez2016-11-221-0/+7
| | | | | | | | | | | | generation. This resolves #519.
* | bugfix: the sspmod_saml_IdP_SQLNameID::getIdentities() method was broken.Jaime Pérez2016-11-221-0/+7
| | | | | | | | The $store and $params variables were not initialized before trying to execute the prepared statement.
* | bugfix: Make sure empty strings are not acceptable for NameID generation.Jaime Pérez2016-11-222-0/+17
| | | | | | | | This resolves #519.
* | bugfix: When generating a NameID from a multivalued attribute, a warning was ↵Jaime Pérez2016-11-221-0/+1
| | | | | | | | logged but the NameID was still generated.
* | Merge pull request #520 from ntoniazzi/bug-apr1cryptJaime Pérez Crespo2016-11-211-1/+1
|\ \ | | | | | | Fix APR1_MD5::check call
| * | Fix APR1_MD5::check callntoniazzi2016-11-211-1/+1
|/ / | | | | $password and $crypted where swapped
* | Fix typo in docs (#518)Tim van Dijen2016-11-171-1/+1
| |
* | More clearly separate baseurlpath from the filesystem paths.Thijs Kinkhorst2016-11-151-9/+19
| | | | | | | | | | | | Frequently people put fs paths in baseurlpath or URL paths in the other settings. By more clearly separating these two classes of options I hope to reduce confusion a bit.
* | sanitycheck: formatting changes psr-2, no functional changesThijs Kinkhorst2016-11-156-73/+70
| |
* | Coding style psr-2, no functional changes.Thijs Kinkhorst2016-11-152-12/+24
| |
* | Fix link to Moz ObservatoryThijs Kinkhorst2016-11-151-1/+1
| |
* | Fix tests depending on Language->language_namesHanne Moa2016-11-151-20/+42
| |
* | Merge branch 'grueneedv-master'Thijs Kinkhorst2016-11-158-1029/+1086
|\ \
| * | Formatting updates LDAP module, no functional changes.Thijs Kinkhorst2016-11-157-1033/+1054
| | | | | | | | | | | | For #458
| * | Update Logger class usage to new namespaceThijs Kinkhorst2016-11-151-2/+2
| | |
| * | Merge branch 'master' of https://github.com/grueneedv/simplesamlphp into ↵Thijs Kinkhorst2016-11-152-2/+38
| |\ \ |/ / / | | | | | | grueneedv-master
| * | Update ldap.txtgrueneedv2016-05-031-1/+14
| | | | | | | | | Add documentation for OpenLDAP case.
| * | Update AttributeAddUsersGroups.phpgrueneedv2016-05-031-1/+24
| | | | | | | | | Added OpenLDAP case in getgroups function
* | | Document the “scope” configuration option for remote SAML IdP metadata.Jaime Pérez2016-11-151-0/+8
| | |
* | | Docs: add some content to the "Maintenance and Configuration: Aapache" section.Thijs Kinkhorst2016-11-152-7/+22
| | |
* | | Wash config 'language.available'Hanne Moa2016-11-151-2/+26
| | |
* | | Document 'language.i18n.backend'Hanne Moa2016-11-151-2/+8
| | |
* | | Fix inconsistency in the documentation.Jaime Pérez2016-11-141-1/+1
| | | | | | | | | | | | The guidelines on how to write your own module talk about the process() method receiving a “$request” or a “$state” parameter, instead of being consistent and sticking to just one of the names. Use “$request”.
* | | Reformat sspmod_saml_IdP_SAML2 to comply with PSR-2 standards.Jaime Pérez2016-11-141-1039/+1134
| | |
* | | Merge pull request #513 from simplesamlphp/feature/deprecate-attributerealmThijs Kinkhorst2016-11-144-48/+46
|\ \ \ | | | | | | | | Deprecate AttributeRealm authproc filter
| * | | Deprecate the core:AttributeRealm module.Thijs Kinkhorst2016-11-144-6/+6
| | | | | | | | | | | | | | | | | | | | | | | | `core:ScopeFromAttribute` is a generalised version of this. Closes: #512
| * | | Formatting: tabs to spaces. No functional changes.Thijs Kinkhorst2016-11-141-42/+40
| | | |
* | | | Add missing language nameHanne Moa2016-11-141-0/+1
| | | |
* | | | Update the RPM spec to stop including versions in master.Jaime Pérez2016-11-141-1/+1
| | | | | | | | | | | | | | | | That should be done in the release branches themselves, and the release number in the spec file updated as part of the release process.
* | | | Code style: spaces, lowercase keywords.Thijs Kinkhorst2016-11-143-231/+232
|/ / / | | | | | | | | | | | | | | | No functional changes. For: #458
* | | Merge pull request #489 from jschlyter/rpm_specfile_cleanupThijs Kinkhorst2016-11-141-18/+12
|\ \ \ | |_|/ |/| | RPM specfile cleanup
| * | policycoreutils-python required for semanageJakob Schlyter2016-10-101-1/+1
| | |
| * | sort and update filesJakob Schlyter2016-10-101-15/+9
| | |
| * | set last versionJakob Schlyter2016-10-101-2/+2
| | |
* | | Add missing translations for “required” and “optional” strings when ↵Jaime Pérez2016-11-091-1/+5
| | | | | | | | | | | | checking PHP extensions installed.
* | | bugfix: Using $t instead of $this in a template context.Jaime Pérez2016-11-091-1/+1
| | |
* | | Support SAML2\XML\saml\NameID objects as the value of an eduPersonTargetedID.Jaime Pérez2016-11-071-1/+1
| | |
* | | Merge pull request #508 from mesutaksak/patch-1Jaime Pérez Crespo2016-11-071-66/+66
|\ \ \ | | | | | | | | Fixed Language Tag Paramerters
| * | | Fixed Language Tag ParamertersMesut Aksak2016-11-071-66/+66
|/ / /
* | | typo: Fix capitalized function call.Jaime Pérez2016-11-031-1/+1
| | |
* | | Merge pull request #506 from tvdijen/patch-8Jaime Pérez Crespo2016-10-311-0/+3
|\ \ \ | | | | | | | | Add missing definition for FLUSH-command
| * | | Add missing definition for FLUSH-commandTim van Dijen2016-10-311-0/+3
|/ / /
* | | Add translations to the correct templateHanne Moa2016-10-281-1/+1
| | |
* | | Namespace translation tagsHanne Moa2016-10-281-9/+9
| | | | | | | | | | | | | | | | | | | | | Note the tags 'spname' and spdescription' that cannot be namespaced because their translations are loaded dynamically. For #455 and #465
* | | Change tabs to spaces, remove whitespace at end of lineHanne Moa2016-10-281-82/+82
| | | | | | | | | | | | For: #458
* | | Move context-changing function out of templateHanne Moa2016-10-282-4/+1
| | | | | | | | | | | | For #454 and #465
generated by cgit v1.1 at 2025-05-11 07:06:13 +0000