Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Attribute values are optional | Ivan Kanakarakis | 2021-12-07 | 1 | -4/+3 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | fix: saml2.assertion: safeguard _filter_values against vals=None | Vlad Mencl | 2021-06-10 | 1 | -0/+3 |
| | | | | | | | | | In certain circumstances, such as an Saml2IdP receiving a request from an SP where the SP metadata has a RequestedAttribute with specific values, `_filter_values` may be called with vals=None when processing the AuthnRequest. Safeguard against this by returning early, returning the None value unfiltered. (It will get later replaced with an [] in `_apply_attr_value_restrictions`). | ||||
* | Try to get the friendlyName of the required RequestedAttribute else derive ↵ | Ivan Kanakarakis | 2021-04-18 | 1 | -6/+10 |
| | | | | | | it using the canonical Name Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Bandaid for crash when friendlyName is not set in metadata | Johan Lundberg | 2021-04-16 | 1 | -1/+6 |
| | |||||
* | Set proper entity category restrictions when release is set to be empty | Ivan Kanakarakis | 2020-12-14 | 1 | -0/+2 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Ignore duplicate RequestedAttribute entries when filtering attributes | Ivan Kanakarakis | 2020-11-13 | 1 | -1/+3 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Refactor do_subject_confirmation and do_subject for policy info | Ivan Kanakarakis | 2020-10-30 | 1 | -18/+14 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Refactor Policy to check the registration authority for restrictions | Ivan Kanakarakis | 2020-10-30 | 1 | -213/+209 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Allow registration authorities in policy | Johan Lundberg | 2020-10-30 | 1 | -66/+91 |
| | |||||
* | Replace assert with proper checksassert_deletion | Ivan Kanakarakis | 2020-09-11 | 1 | -3/+1 |
| | | | | Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com> | ||||
* | Enable entity category import from module search path | Scott Koranda | 2019-05-07 | 1 | -2/+5 |
| | | | | | | | | | | | | This enhancement causes an entity category import to first be tried from the general module search path, and if that fails then to fall back to the current default of importing saml2.entity_category.<module>. This allows deployers to overlay their own customized versions of entity category modules like edugain.py that contain CoCo. This is helpful since the list of attributes to be included as part of the entity category may not be globally the same for all deployments. Such is the case with CoCo where the list of attributes changes from federation to federation and deployment to deployment. | ||||
* | Ordered way to find a local name of an attribute. | Roland Hedberg | 2017-10-11 | 1 | -13/+25 |
| | |||||
* | Minor fixes | Ioannis Kakavas | 2017-07-05 | 1 | -8/+5 |
| | |||||
* | Base attribute filtering on internal representation names | Ioannis Kakavas | 2017-06-12 | 1 | -4/+9 |
| | | | | | | Instead on relying on the FriendlyName from metadatata, use the name of the internal representation of an attribute in order to perform filtering. Resolves #422 | ||||
* | Support setting the SessionNotOnOrAfter in an authn response | Ashima Athri | 2016-08-18 | 1 | -4/+9 |
| | |||||
* | Don't catch KeyError over too broad statement. | Rebecka Gulliksson | 2016-05-17 | 1 | -6/+5 |
| | | | | | | Previously KeyError in lower level of implementation, MetadataStore.entity_categories(), was caught instead of being propagated. | ||||
* | Merge branch 'master' of github.com:rohe/pysaml2 | Roland Hedberg | 2016-05-16 | 1 | -8/+7 |
|\ | |||||
| * | Merge pull request #331 from rebeckag/policy-compile | Roland Hedberg | 2016-05-14 | 1 | -8/+7 |
| |\ | | | | | | | Use deepcopy to avoid modifying external data. | ||||
| | * | Use deepcopy to avoid modifying external data. | Rebecka Gulliksson | 2016-05-03 | 1 | -8/+7 |
| | | | |||||
* | | | Handle empty required list. | Roland Hedberg | 2016-05-16 | 1 | -1/+1 |
| | | | | | | | | | | | | Added missing recipient. | ||||
* | | | Deal with entity category (CoCo) that have more complex evaluation rules. | Roland Hedberg | 2016-05-16 | 1 | -48/+63 |
|/ / | |||||
* | | Added functionality needed by the saml2test tool. | Roland Hedberg | 2016-04-16 | 1 | -29/+51 |
|/ | |||||
* | Filter optional attributes in the exact same way as required attributes. | Rebecka Gulliksson | 2015-12-28 | 1 | -26/+27 |
| | |||||
* | Match the attribute name of optional attributes in the same way as for ↵ | Rebecka Gulliksson | 2015-12-28 | 1 | -71/+68 |
| | | | | required attributes. | ||||
* | Fixed name_format bug. Modified test to check for name_format specification. | Roland Hedberg | 2015-11-02 | 1 | -1/+1 |
| | |||||
* | Fix paramter passing in logging messages | Jozef Knaperek | 2015-10-15 | 1 | -2/+2 |
| | | | | | | | | Pass parameters into logger calls directly instead of pre-merging with the logger message. This way the logs are easier to maintain and process. The code is also faster when logging is turned off since it doesn't have to evaluate all params and render them into strings. | ||||
* | Fixing py3 errors caused by views in assertions | Clint Byrum | 2015-05-28 | 1 | -1/+1 |
| | | | | | Assertions code had some assumptions that dict method iterators would return the actual type. Forcing a cast to list remedies that. | ||||
* | Fix assertion test failures in python3 | Clint Byrum | 2015-05-28 | 1 | -1/+1 |
| | | | | | | More strings/bytes problems causing issues with hashing. This further cements that all data coming into pysaml2 will need to be utf-8, or the API will need to have more places to specify alternative encodings. | ||||
* | Fix import issues with python3 | Clint Byrum | 2015-05-21 | 1 | -1/+1 |
| | | | | Relative imports are different and some modules were renamed. | ||||
* | Use six.string_types instead of basestring | Clint Byrum | 2015-05-15 | 1 | -2/+3 |
| | | | | | | | In python3 strings are different, so basestring isn't available anymore. While examining these uses, all of them still work fine with six.string_types and should not need any new special handling to deal with bytes. | ||||
* | Fix python3 syntax errors | Clint Byrum | 2015-05-15 | 1 | -1/+1 |
| | | | | | Retains python2.7 compatibility for all files. Fixes only syntax errors, tests still fail on python3 for various reasons. | ||||
* | Updated pysaml2 to support PEFIM. | Hans Hörberg | 2015-03-16 | 1 | -17/+24 |
| | | | | Added encrypted assertions with self contained namespaces in the advice element. | ||||
* | Allow adding an AuthnStatement instance to the Assertion construct and ↵ | Roland Hedberg | 2014-12-01 | 1 | -3/+5 |
| | | | | Server authn_response methods. | ||||
* | PEP-8 | Roland Hedberg | 2014-10-02 | 1 | -38/+38 |
| | |||||
* | On Copyright statement in one place. | Roland Hedberg | 2014-09-09 | 1 | -14/+0 |
| | |||||
* | Fixed attribute filtering logic, take 2. | Roland Hedberg | 2014-06-03 | 1 | -12/+31 |
| | |||||
* | Fixed problematic logic. | Roland Hedberg | 2014-05-28 | 1 | -5/+6 |
| | |||||
* | Added a policy flag that if set to False will allow the IdP to send back an ↵ | Roland Hedberg | 2014-04-14 | 1 | -3/+18 |
| | | | | incomplete reply. Not containing attributes that the SP deemed important (that is marked required). | ||||
* | Fixed handling of signed and then encrypted response assertions. At the ↵ | Roland Hedberg | 2014-04-14 | 1 | -98/+100 |
| | | | | same time added support for dealing with any combination of encrypted/non-encrypted assertions. | ||||
* | More user friendly error message. | Roland Hedberg | 2014-03-28 | 1 | -23/+24 |
| | |||||
* | Fixed a problem with filtering assertion by required/optional attributes. | Roland Hedberg | 2014-03-27 | 1 | -16/+26 |
| | |||||
* | PEP-8 stuff | Roland Hedberg | 2014-03-24 | 1 | -1/+2 |
| | |||||
* | Refactored class methods | Roland Hedberg | 2014-03-08 | 1 | -107/+94 |
| | |||||
* | Allow for the specification of authn_instant and subject_locality in ↵ | Roland Hedberg | 2014-02-05 | 1 | -12/+36 |
| | | | | | | AuthnStatements. Make it possible to tell the IdP to return a response even though the SP required attributes are not present. | ||||
* | Fixed all tests and various bugs that appeared during that process. | Roland Hedberg | 2013-12-13 | 1 | -1/+7 |
| | |||||
* | If no identity information refrain from constructing an AttributeStatement. | Roland Hedberg | 2013-12-05 | 1 | -1/+4 |
| | |||||
* | Made SWAMIDs 2-dimensional entity category model work. | Roland Hedberg | 2013-11-18 | 1 | -19/+21 |
| | |||||
* | Don't add authn_statement unless actually defined. | Roland Hedberg | 2013-11-12 | 1 | -2/+6 |
| | |||||
* | More places where there should be lists and not singletons. | Roland Hedberg | 2013-09-03 | 1 | -2/+2 |
| | |||||
* | Statement should really be statements - plural ! | Roland Hedberg | 2013-09-03 | 1 | -2/+2 |
| | | | | Anyway fixed so they are when assigning. |