Commits · 50728b0463fab48b45a9fac2abe6c3453e6e96cd · Perun / Perun ProxyIdP / v1 / simplesamlphp

Oct 10, 2017

Fix duplicate assertion error using Redis Store · 50728b04
Matt Clarkson authored 7 years ago

50728b04
Merge pull request #685 from pradtke/cron-cli · a5948af7
Jaime Pérez Crespo authored 7 years ago
```
Allow CLI invocation of Cron
```
a5948af7
bugfix: Do not crash when a module that contains a theme doesn't have a "templates" directory. · 8095c122
Jaime Pérez Crespo authored 7 years ago
```
This resolves #695.
```
Unverified

8095c122

bugfix: Make sure no JS code can be injected into redirected URLs · 5f074e97

Jaime Pérez Crespo authored 7 years ago

In order to fix this, we first sanitize any URL given to SimpleSAML\Utils\HTTP::checkURLAllowed() so that we make sure we have a true URL without spurious characters. Secondly, we stop using an "onload" event in the body of the redirect page to trigger the redirect automatically. Instead, we use a "meta refresh" redirection.

This double remediation is because there were two issues here: one, we were printing user input inside a chunk of javascript code. The other exploits the fact that the header() function silently breaks when a null character is part of the URL given to a "Location" header. In that case, the HTTP 302 Redirection doesn't happen, and then the browser loads the HTML and goes through it, running the injected javascript.

This fixes #699.

Unverified

5f074e97

Oct 07, 2017
- Merge pull request #698 from mschwager/master · af84ac51
  Thijs Kinkhorst authored 7 years ago
```
Correct Redis store port argument string
```
  af84ac51
Oct 04, 2017
- Correct Redis store port argument string · b9884727
  Matt Schwager authored 7 years ago
  
  Unverified
  
  b9884727
Sep 22, 2017
- build-release: remove more unneeded stuff · ccab5ff2
  Thijs Kinkhorst authored 7 years ago
  
  v1.15.0-rc1
  
  ccab5ff2
- Update version to 1.15.0-rc1 · 0917046c
  Thijs Kinkhorst authored 7 years ago
  
  0917046c
- Fix build: consider UntypedParam as info for now, as we need to support pre-typed versions of PHP. · 1c0b516d
  Thijs Kinkhorst authored 7 years ago
  
  1c0b516d
Sep 20, 2017
- Improve documentation formatting · 9b15fde3
  Thijs Kinkhorst authored 7 years ago
  
  9b15fde3
Sep 07, 2017
- Try to fix build again. Avoid failing assertions. · dffe63c5
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  dffe63c5
- Add tests for the new SimpleSAML\Auth\Simple::getProcessedURL() · 3f3f8dbc
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  3f3f8dbc
- Migrate all calls of SimpleSAML_Auth_Simple to \SimpleSAML\Auth\Simple. · 470c69ac
  Jaime Pérez Crespo authored 7 years ago
```
Fix build as a side effect. When vimeo/psalm tries to resolve dependencies, it now fails with this.
```
  Unverified
  
  470c69ac
- Add a new method SimpleSAML\Auth\getProcessedURL(). · 918a1fb4
  Jaime Pérez Crespo authored 7 years ago
```
This method allows us to parse a URL and "rebase" it based on the $config['application']['baseURL'] configuration option. Thanks to this, applications will be able to configure a canonical base URL for the application, effectively translating any URL that might be built incorrectly (e.g. not using HTTPS because that is offloaded to a reverse proxy).
```
  Unverified
  
  918a1fb4
- Updated the changelog and upgrade notes. · 5579bc99
  Jaime Pérez Crespo authored 7 years ago
  
  5579bc99
- Migrate SimpleSAML_Auth_Simple to use namespaces. · 53e918b0
  Jaime Pérez Crespo authored 7 years ago
```
It can now be used with \SimpleSAML\Auth\Simple, although the old name still works too.
```
  53e918b0
- Merge pull request #689 from gregharvey/master · e511aaca
  Jaime Pérez Crespo authored 7 years ago
```
Using null as memcache prefix in default config causes fatal error.
```
  e511aaca
- Using null as memcache prefix in default config causes fatal error. · 671160dd
  Greg Harvey authored 7 years ago
  
  671160dd
Sep 05, 2017

Bugfix: searchformultiple() would stop on first dn even when nothing found. · 71bacd03

Thijs Kinkhorst authored 7 years ago

searchformultiple() will loop over all the configured base dn's to
search in. However, it would break on the first search that does
not return `false`. A search that yields 0 hits is not `false`, however
(it is only false when an error occurred). So when using more than one
base, users would not be found if they were part of the second or later
base, which is contrary to the intention.

This is now changed so the loop breaks when the result is not false, and
the number of found results is > 0.

71bacd03

Changelog typo · 2863d93b
Thijs Kinkhorst authored 7 years ago

2863d93b

Sep 04, 2017
- Update changelog. · d3154063
  Jaime Pérez Crespo authored 7 years ago
  
  d3154063
Sep 01, 2017
- Use namespace for cron module; fix $summary display in www/cron.php · 4f7857d4
  Patrick Radtke authored 7 years ago
  
  4f7857d4
- Update travis-ci configuration · 5ddfa5e4
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  5ddfa5e4
- Nothing works to make psalm work, try moving the config to the root of the... · 92ef2735
  Jaime Pérez Crespo authored 7 years ago
```
Nothing works to make psalm work, try moving the config to the root of the repo and skip the -c parameter.
```
  Unverified
  
  92ef2735
- Try to invoke the psalm PHP script directly · 8fdf9894
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  8fdf9894
- vendor/bin/psalm is not a PHP script, don't try to run it as such · 6124a3aa
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  6124a3aa
- Fix typo & stop calling composer with deprecated --dev option · 1dd720bb
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  1dd720bb
- Fix build by installing vimeo/psalm only when used, instead of making it a development requirement. · 22a3bc0b
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  22a3bc0b
- Start using vimeo/psalm on SimpleSAML/Utils/* to detect errors. · 4f725347
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  4f725347
- Remove unused variable. · 3e102350
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  3e102350
- Fix build · 89ed509e
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  89ed509e
- Fix multiple issues in SimpleSAML/Utils/* detected with vimeo/psalm. · 67dc1b15
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  67dc1b15
- Remove mcrypt dependency from the specfile. · 8ecc3583
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  8ecc3583
- Add a test for SimpleSAML\Utils\Attributes::getAttributeNamespace() · 02246aa7
  Jaime Pérez Crespo authored 7 years ago
```
Also make the default namespace parameter mandatory, so that the function is not ADFS-specific.
```
  Unverified
  
  02246aa7
- Merge pull request #680 from tvdijen/adfs-attribute-namespace · 1a9369d8
  Jaime Pérez Crespo authored 7 years ago
```
Flexible namespace
```
  1a9369d8
- Make sure to set the default namespace to keep backwards compatibility · 49adfcca
  Jaime Pérez Crespo authored 7 years ago
  
  49adfcca
- Move namespace-logic outside of this class for usage elsewhere · e128a4db
  Tim van Dijen authored 7 years ago
  
  e128a4db
- Add a basic set of tests for time-limited tokens. · 06784bae
  Jaime Pérez Crespo authored 7 years ago
  
  Unverified
  
  06784bae
- Merge pull request #601 from pradtke/bug/clear-global-state-in-tests · 829f0790
  Jaime Pérez Crespo authored 7 years ago
```
Reduce state spill over between tests
```
  829f0790
Aug 31, 2017
- cron cli: check if posix_getuid exists. Update documentation · 35183510
  Patrick Radtke authored 7 years ago
  
  35183510