Commits · 4da9282c024aa247c6d013119af7a538fe16bd8a · Perun / Perun ProxyIdP / v1 / simplesamlphp

Nov 21, 2018

Update OpenSSL RSA bit length in docs · 4da9282c

Guy Halse authored 6 years ago

Change documentation from recommending 2048 bit keys to using 3072 bit
keys.

Given that we're recommending people generate ten-year keys, 2048 bit
keys are probably a bit short. Almost all commercial certificate
authorities now recommend 4096 bit keys, and eduGAIN requires 3072 bit
keys for new federations.

This change aligns the SimpleSAMLphp documentation with the lower
eduGAIN requirement, since that still meets most standards bodies
recommendations for 2028 (ten years from now). cf
https://www.keylength.com/

4da9282c

Nov 15, 2018
- Also add SP-side docs and changelog · dab61cc8
  Thijs Kinkhorst authored 6 years ago
  
  dab61cc8
Nov 13, 2018
- Update documentation for NameIDPolicy · 93fdf504
  Thijs Kinkhorst authored 6 years ago
  
  93fdf504
Sep 23, 2018
- Add docs for saml:AuthnContextClassRef filter · 4d7c800b
  peter authored 6 years ago
  
  4d7c800b
May 29, 2018
- Make SHA-256 the default signature algorithm. · 21d4b108
  Thijs Kinkhorst authored 6 years ago
```
SHA-1 is still supported but needs to be configured explicitly if you need it.
```
  21d4b108
May 24, 2018
- saml SP: doc fix · 30a9c739
  Thijs Kinkhorst authored 6 years ago
  
  30a9c739
Sep 07, 2017
- Migrate SimpleSAML_Auth_Simple to use namespaces. · 53e918b0
  Jaime Pérez Crespo authored 7 years ago
```
It can now be used with \SimpleSAML\Auth\Simple, although the old name still works too.
```
  53e918b0
Jun 01, 2017

Added configuration support for index and isDefault on the generated... · bda996f9

Thomas Vanhaniemi authored 7 years ago

Added configuration support for index and isDefault on the generated md:AttributeConsumingService element

Added two metadata configuration options attributes.index and attributes.isDefault to the Service Provider section that outputs to the md:AttributeConsumingService element.
attributes.index overrides the index attribute value with another integer value specified.
attributes.isDefault adds the isDefault attribute with the given boolean value, if the configuration option is specified.

bda996f9

Jan 11, 2017
- Update the SAML2 library and start using the new \SAML2\XML\saml\NameID objects. · ff3df073
  Jaime Pérez Crespo authored 8 years ago
```
This enables too the implementation of additional contact attributes, as requested in #509 to support the SIRTFI framework.
```
  ff3df073
Sep 05, 2016

Allow setting the 'Comparison' attribute in authentication contexts. · b6511f5c

Jaime Pérez authored 8 years ago

Even though the default "exact" is used by most people, and few products support anything else, there's people asking for this.

b6511f5c

doc: Fix use of SAML2_Const in documentation. · 1f718685

Jaime Pérez authored 8 years ago

Since we have updated the version of the SAML2 library in use, we should use SAML2\Constants now.

1f718685

Jul 29, 2016

authproc: Add new filter to remove invalid scopes. · b45df072

Jaime Pérez authored 8 years ago

The new saml:FilterScopes allows a SAML Service Provider to remove the values from a scoped attribute whose scope is not declared in the IdP metadata and/or does not match with the domain in use by the IdP itself.

This closes #22.

b45df072

Jul 26, 2016

Bump the version of the SAML2 library. · b02c5432

Jaime Pérez authored 8 years ago

Now we are finally using the 2.x branch of the SAML2 library, which was also migrated to use namespaces. Even though the library provides an autoloader that allows loading the classes with the old names using class aliasing, we need to do the migration in one commit (at least for most part of it). This is due to the way SimpleSAMLphp checks data types, using inheritance to check objects agains abstract or more general classes. Even though class aliasing works, there's no way to replicate those relationships, and type checks that use the old class names will fail because the aliases are virtually new classes that don't inherit from others.

b02c5432

Jul 13, 2016
- Allow the optional Subject NameID to be set in a SAML AuthnRequest through "saml:NameID" · 82e58db7
  Pieter van der Meulen authored 8 years ago
  
  82e58db7
Jun 08, 2016
- Change the extension of the documentation files from .txt to .md so that they... · 677c3b0b
  Jaime Perez Crespo authored 8 years ago
```
Change the extension of the documentation files from .txt to .md so that they can processed as markdown and displayed in github.
```
  677c3b0b
Nov 06, 2015
- s/simpleSAMLphp/SimpleSAMLphp/g · f25c7815
  Jaime Perez Crespo authored 9 years ago
```
(being respectful with occurences that might change the behaviour, i.e. default database prefixes)
```
  f25c7815
- Revert "Make SHA-256 the default signature algorithm." · 54e93fd1
  Jaime Perez Crespo authored 9 years ago
```
This reverts commit 09c5a23f.
```
  54e93fd1
Nov 05, 2015
- Make SHA-256 the default signature algorithm. · 09c5a23f
  Thijs Kinkhorst authored 9 years ago
```
SHA-1 is still supported but needs to be configured explicitly if you need it.
```
  09c5a23f
Oct 11, 2015
- XML data is loaded using SAML2_DOMDocumentFactory class · c19745b1
  Sergio Gómez authored 9 years ago
  
  c19745b1
Aug 17, 2015

Provide config options to allow SQLPersistentNameID to be less conservative... · 5c9a2299

Guy Antony Halse authored 9 years ago

Provide config options to allow SQLPersistentNameID to be less conservative about creating entries in the SQL datastore, whilst preserving default behaviour

5c9a2299

Mar 31, 2015

Support for WantAssertionsSigned and AuthnRequestsSigned in SAML 2.0 SP... · ba351d40

Jaime Perez Crespo authored 9 years ago

Support for WantAssertionsSigned and AuthnRequestsSigned in SAML 2.0 SP metadata. New hosted SP configuration option WantAssertionsSigned to control this attribute in exported metadata.

Unverified

ba351d40

Jan 15, 2015
- docs: remove references to saml20-sp-hosted. · 21b787d5
  Jaime Perez authored 11 years ago
  
  21b787d5
Dec 15, 2014
- Fix typo in SP documentation. · 6ad6c966
  Jaime Perez authored 10 years ago
  
  6ad6c966
Apr 07, 2014

Document the new feature implemented by Andrea Biancini to add friendly names... · e119303e

Jaime Perez authored 10 years ago

Document the new feature implemented by Andrea Biancini to add friendly names to attributes in the SP's metadata. Solves issue #60.

e119303e

Jan 30, 2014
- Creating a new page for MDRPI, modifying all the documentation to point to it. · 0b6dcf95
  Jaime Pérez Crespo authored 11 years ago
```
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3346 44740490-163a-0410-bde0-09ae8108e29a
```
  0b6dcf95
Jan 28, 2014
- Add support to publish RegistrationInfo (MDRPI) in the SP. · f4ae7f6a
  Jaime Pérez Crespo authored 11 years ago
```
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3341 44740490-163a-0410-bde0-09ae8108e29a
```
  f4ae7f6a
Jan 27, 2014

Language fixes. · 74f1033f

Jaime Pérez Crespo authored 11 years ago

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3333 44740490-163a-0410-bde0-09ae8108e29a

74f1033f

Dec 09, 2013
- Properly document the use of NameIDFormat configuration option. · f1a00265
  Jaime Pérez Crespo authored 11 years ago
```
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3313 44740490-163a-0410-bde0-09ae8108e29a
```
  f1a00265
Nov 19, 2013

Properly document the signature.algorithm option. Also add configuration... · 22579cec

Jaime Pérez Crespo authored 11 years ago

Properly document the signature.algorithm option. Also add configuration examples showing how to start using SHA-256, and warning about SHA-1 being disallowed starting in 2014.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3297 44740490-163a-0410-bde0-09ae8108e29a

22579cec

Jul 17, 2013

Full support for HTTP-POST binding in WebSSO profile. Two new directives in... · 5a640391

Jaime Pérez Crespo authored 11 years ago

Full support for HTTP-POST binding in WebSSO profile. Two new directives in hosted metadata (SingleSignOnServiceBinding and SingleLogoutServiceBinding) to control the bindings published as supported in the metadata.

Bugfix in the logout handler (SOAP binding should be reused when responding a request).

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3257 44740490-163a-0410-bde0-09ae8108e29a

5a640391

Apr 10, 2013

saml: Add support for more contact types in SP metadata. · cc70193a

Olav Morken authored 11 years ago

Thanks to François Kooman for implementing this!

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3235 44740490-163a-0410-bde0-09ae8108e29a

cc70193a

Jan 11, 2013

saml:PersistentNameID2TargetedID: New filter for storing persistent NameID in... · 800e9f9c

Olav Morken authored 12 years ago

saml:PersistentNameID2TargetedID: New filter for storing persistent NameID in eduPersonTargetedID attribute.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3221 44740490-163a-0410-bde0-09ae8108e29a

800e9f9c

Oct 18, 2012

saml: Add separate option to enable HoK support on SP. · c5c34576

Olav Morken authored 12 years ago

Instead of always adding the endpoint to the metadata, require
setting a separate option to enable it.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3194 44740490-163a-0410-bde0-09ae8108e29a

c5c34576

Aug 02, 2012

saml: Add "encryption.blacklisted-algorithms"-option. · 50cada35

Olav Morken authored 12 years ago

This option allows us to disable some encryption algorithms.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3139 44740490-163a-0410-bde0-09ae8108e29a

50cada35

May 15, 2012

saml:SP: Add support for specifying bindings and required attributes in metadata. · 7bea57bb

Olav Morken authored 12 years ago

This patch adds two enhancements to metadata generation:
 * Support for specifying attributes that are required.
 * Support for removing some of the AssertionConsumerService bindings.

Thanks to Benjamin Andresen for implementing this!

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3092 44740490-163a-0410-bde0-09ae8108e29a

7bea57bb

Feb 16, 2012

saml:ExpectedAuthnContextClassRef: Update documentation. · a65d6625

Olav Morken authored 13 years ago

Thanks to Gyula Szabó for providing this patch.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3032 44740490-163a-0410-bde0-09ae8108e29a

a65d6625

Feb 13, 2012

saml: Add new filter "ExpectedAuthnContextClassRef". · 8cf292df

Olav Morken authored 13 years ago

This filter verifies the authentication context received from the IdP
against a list of allowed values.

Thanks to Gyula Szabó for creating this filter!

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@3031 44740490-163a-0410-bde0-09ae8108e29a

8cf292df

Sep 06, 2011

Document nameid.encryption. · 8a23124a

Olav Morken authored 13 years ago

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2891 44740490-163a-0410-bde0-09ae8108e29a

8a23124a

Aug 09, 2011

docs: Clarify the IdP initiated authentication documentation slightly. · abc947c7

Olav Morken authored 13 years ago

- Fix the entityID in the example URL to be a valid entityID.
- Clarify the difference between `TARGET` in authentication response
  vs. `target` in authentication "request".

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2884 44740490-163a-0410-bde0-09ae8108e29a

abc947c7

Aug 05, 2011
- saml:sp: Note that SAML 1.1 SPs must specify the TARGET parameter. · 6e7e8072
  Olav Morken authored 13 years ago
```
git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2881 44740490-163a-0410-bde0-09ae8108e29a
```
  6e7e8072