| Commit message (Collapse) | Author | Age | Files | Lines |
|\
| |
| | |
Implement entity category MyAcademicID-ESI for SWAMID
|
| |
| |
| |
| | |
swamid
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|/
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
|
| |
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Closes #806
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
|
|
|
|
| |
importlib.resources was added to python standard library since python 3.7
[1]. This patch is implementing conditional to use it instead of the
importlib_resources backport when using python 3.7 or newer.
[1] https://docs.python.org/3/whatsnew/3.7.html
|
|\
| |
| | |
Handle KeyError when retrieving SessionIndex
|
| |
| |
| |
| |
| | |
This was broken in commit b69e92585
Fixes https://github.com/IdentityPython/pysaml2/issues/826
|
|/
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
|
|
| |
given keys
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|\
| |
| | |
Support metadata reload
|
| |
| |
| |
| |
| |
| | |
over all types
As per review suggestion in #809
|
| |
| |
| | |
Co-authored-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| | |
Co-authored-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Support reloading metadata by adding a reload_metadata method to saml2.Entity.
This method gets the metadata configuration in the same format
as the 'metadata' entry in the configuration passed to saml2.Config.
To keep metadata refreshed, this method needs to be periodically explicitly called.
For a metadata refresh with the same configuration, the calling application
should keep a copy of the original configuration to pass to this method.
Resolves #808
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
In certain circumstances, such as an Saml2IdP receiving a request
from an SP where the SP metadata has a RequestedAttribute with specific values,
`_filter_values` may be called with vals=None when processing the AuthnRequest.
Safeguard against this by returning early, returning the None value unfiltered.
(It will get later replaced with an [] in `_apply_attr_value_restrictions`).
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The exception handler in InMemoryMetaData.parse was failing for subclasses
other then `MetaDataFile` with:
AttributeError: 'MetaDataExtern' object has no attribute 'filename'
- because `self.filename` is only defined for MetaDataFile but not MetaDataExtern
The handler was essentially expecting it would only be invoked for MetaDataFile
and not other subclasses of InMemoryMetaData.
Provide useful descriptive messages for MetaDataFile and MetaDataExtern
subclassses - and fall back to a generic (but safe) message otherwise.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
MetadataStore.dumps(format="md") was failing with
TypeError: Object of type dict_items is not JSON serializable
... because self.items() returns dictitems() - while only a dict would be serializable into JSON.
Convert the dictitems back into a dict.
|
| |
| |
| |
| | |
Align the docstrings with what the functions actually implement.
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|/
|
|
|
|
|
|
| |
- Enforce allowed canonicalization methods
- Enforce allowed transform aglorithms
- Ensure the Object element is absent
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Consider:
- what the IdP supports
- what the SP prefers
- the expected binding
Find the common set and select the first preferred choice.
Then do the logout.
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|
|
|
| |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
|\
| |
| | |
Add inline documentation
|
| | |
|
| | |
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|
| |
| |
| |
| | |
Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
|