Rewrite of SAML2 HTTP Redirect request signing, now using xmlseclibs.
Implemented verification of authenticationrequest, logoutrequest and logoutresponse. Moved config of signing and verification to individual metadata entries. To sign/verify on hosted SP there must be a certificate and a privatekey. The normal certificate and privatekey of the IdP are reused when signing is enabled. To verify remote SP and/or IdP the remote certificate must be present. This commit is tested to some extend - please post bugs on google code project page. git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@178 44740490-163a-0410-bde0-09ae8108e29a
Showing
- config/config-template.php 0 additions, 9 deletionsconfig/config-template.php
- lib/SimpleSAML/Bindings/SAML20/HTTPRedirect.php 68 additions, 38 deletionslib/SimpleSAML/Bindings/SAML20/HTTPRedirect.php
- lib/SimpleSAML/XML/SAML20/LogoutResponse.php 0 additions, 1 deletionlib/SimpleSAML/XML/SAML20/LogoutResponse.php
- metadata-templates/saml20-idp-hosted.php 10 additions, 1 deletionmetadata-templates/saml20-idp-hosted.php
- metadata-templates/saml20-idp-remote.php 12 additions, 1 deletionmetadata-templates/saml20-idp-remote.php
- metadata-templates/saml20-sp-hosted.php 8 additions, 11 deletionsmetadata-templates/saml20-sp-hosted.php
- metadata-templates/saml20-sp-remote.php 9 additions, 0 deletionsmetadata-templates/saml20-sp-remote.php
- www/admin/metadata.php 4 additions, 4 deletionswww/admin/metadata.php
- www/logout.html 1 addition, 1 deletionwww/logout.html
- www/saml2/idp/SSOService.php 8 additions, 2 deletionswww/saml2/idp/SSOService.php
- www/saml2/idp/SingleLogoutService.php 77 additions, 33 deletionswww/saml2/idp/SingleLogoutService.php
- www/saml2/sp/SingleLogoutService.php 65 additions, 28 deletionswww/saml2/sp/SingleLogoutService.php
Loading
Please register or sign in to comment