Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • cesnet_simplesamlphp-1.19.8
  • elixir_simplesamlphp-1.19.8
  • simplesamlphp-1.19.8
  • cesnet_simplesamlphp-1.19.5
  • simplesamlphp-2.0
  • feature/assets
  • feature/rac-source-selector
  • cleanup/remove-base64-attributes
  • simplesamlphp-1.19
  • elixir_simplesamlphp-1.19.5
  • aarc_idp_hinting
  • feature/validate-authstate-before-processing
  • feature/build-two-tarballs
  • dependabot/composer/twig/twig-3.4.3
  • tvdijen-patch-1
  • unchanged-acs-url-no-www-script
  • feature/translation-improvements
  • symfony6
  • move_tests
  • v1.19.9
  • v2.1.3
  • v2.0.10
  • v2.1.2
  • v2.0.9
  • v2.1.1
  • v2.0.8
  • v2.1.0
  • v2.0.7
  • v2.1.0-rc1
  • v2.0.6
  • v2.0.5
  • 2.0.4-alpha.1
  • v2.0.4-alpha.1
  • v2.0.4
  • v2.0.3
  • v2.0.2
  • v2.0.1-alpha.1
  • v2.0.1
  • v1.19.8
40 results
Blame History Permalink
  • Lasse Birnbaum Jensen's avatar
    Rewrite of SAML2 HTTP Redirect request signing, now using xmlseclibs. · db50b31f
    Lasse Birnbaum Jensen authored 
    Implemented verification of authenticationrequest, logoutrequest and logoutresponse. 

Moved config of signing and verification to individual metadata entries. 

To sign/verify on hosted SP there must be a certificate and a privatekey. The normal certificate and privatekey of the IdP are reused when signing is enabled.

To verify remote SP and/or IdP the remote certificate must be present.

This commit is tested to some extend - please post bugs on google code project page.  


git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@178 44740490-163a-0410-bde0-09ae8108e29a
    db50b31f
Code owners
Assign users and groups as approvers for specific file changes. Learn more.