Hynek Mlnarik
1ae268ec6f
KEYCLOAK-1881 Include key ID for REDIRECT and use it for validation
...
Contrary to POST binding, signature of SAML protocol message sent using
REDIRECT binding is contained in query parameters and not in the
message. This renders <dsig:KeyName> key ID hint unusable. This commit
adds <Extensions> element in SAML protocol message containing key ID so
that key ID is present in the SAML protocol message.
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
10deac0b06
KEYCLOAK-1881 KeyLocator implementation for SAML descriptor
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
70a8255eae
KEYCLOAK-1881 Basic key locator support
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
d5c3bde0af
KEYCLOAK-1881 Make SAML descriptor endpoint return all certificates
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
5d840500af
KEYCLOAK-1881 Include key ID in <ds:KeyInfo> in SAML assertions and protocol message
...
Changes of SAML assertion creation/parsing that are required to allow
for validation of rotating realm key: signed SAML assertions and signed
SAML protocol message now contain signing key ID in XML <dsig:KeyName>
element.
2016-11-04 21:53:43 +01:00
Hynek Mlnarik
904a5c3ca5
KEYCLOAK-3864 Add support for SAML2 <Extensions> element in protocol messages
2016-11-04 21:53:43 +01:00
Bill Burke
8967ca4066
refactor mongo entities, optimize imports
2016-09-28 15:25:39 -04:00
Bill Burke
46b4bb0909
KEYCLOAK-3268
2016-07-27 09:28:48 -04:00
Ton Swieb
fed7339558
KEYCLOAK-3265 Support writing a NameIDType AttributeValue
2016-07-05 14:54:38 +02:00
Ton Swieb
af5ac7dd6b
KEYCLOAK-3100 Rearrange SingleLogoutService and NameIDFormat
2016-06-15 21:16:34 +02:00
Pedro Igor
a39907de76
[KEYCLOAK-3068] - Setting XInclude to false
2016-06-01 16:43:02 -03:00
Pedro Igor
60f954a497
[KEYCLOAK-2894] - Fixing saml signature validation
2016-05-26 10:48:30 -03:00
Bill Burke
cca91dd175
public/private
2016-04-12 15:19:46 -04:00
Bill Burke
32d15e2027
KEYCLOAK-2510
2016-02-29 20:39:44 -05:00
Bill Burke
c0d0c1f39a
fix
2016-02-29 16:48:28 -05:00
Bill Burke
64daa568b9
KEYCLOAK-2536
2016-02-29 16:05:43 -05:00
mposolda
e2558ca827
KEYCLOAK-1928 Fix Saml with IBM JDK
2016-02-29 17:32:33 +01:00
Pedro Igor
f7ba306016
[KEYCLOAK-2497] - Prevent inserting malicious SAML assertion
2016-02-17 11:51:58 -02:00
Stian Thorgersen
c7a8742a36
KEYCLOAK-1524
...
Source code headers
2016-02-03 11:20:22 +01:00
George Kankava
92a494359d
squid:S1125 - Literal boolean values should not be used in condition expressions
2016-01-29 00:22:47 +04:00
Bill Burke
1b0aa8e55b
saml logging
2016-01-25 17:38:29 -05:00
Bill Burke
b625ed13a8
fix embedded keycloak, re-org saml-core
2016-01-21 09:56:28 -05:00