a61145f74c
Lock dependencies for 5.3.2.RELEASE
6 years ago
69b1bc62ff
Polish OpenSamlAuthenticationProvider
...
- Use type-safe CriteriaSet
- Keep Assertion immutable
Closes gh-8471
6 years ago
0db9cd075d
Polish OpenSamlAuthenticationProvider
...
- Use type-safe CriteriaSet
- Keep Assertion immutable
Closes gh-8471
6 years ago
d4dbe069ad
Polish OpenSamlAuthenticationProvider
...
- Use type-safe CriteriaSet
- Keep Assertion immutable
Closes gh-8471
6 years ago
1da694e19c
Remove TestSaml2SigningCredentials
...
Since TestSaml2X509Credentials is where tests get Saml2X509Credentials,
there is no reason for TestSaml2SigningCredentials.
Issue gh-8404
6 years ago
ab772893c7
Polish DefaultSaml2AuthenticationRequestContextResolver
...
- Added more tests
- Standardized terminology
Issue gh-8360
6 years ago
8c0bdd50e2
Delegating Saml2AuthenticationRequestContext creation to Saml2AuthenticationRequestContextResolver
...
Saml2AuthenticationRequestContext creation logic is not extensible at
the moment as it is provided inside of Saml2WebSsoAuthenticationRequestFilter.
This change enables to custom logic to be used when creating Saml2AuthenticationRequestContext by
taking the logic from the aforementioned filter to a seperate extensible
API by the name Saml2AuthenticationRequestContextResolver.
This provides following API contract and implementation:
- Saml2AuthenticationRequestContextResolver
- DefaultSaml2AuthenticationRequestContextResolver
Fixes gh-8360
6 years ago
af433fdbdf
Polish OpenSamlAuthenticationProviderTests
...
- Add missing assertion
Issue gh-6019
6 years ago
067cb4579e
Polish OpenSamlAuthenticationProviderTests
...
- Add missing assertion
Issue gh-6019
6 years ago
8904361a37
Polish Saml Tests
...
Fixes gh-8403
Fixes gh-8404
6 years ago
7056c2d9de
Polish OpenSamlAuthenticationProviderTests
...
- Added missing this keywords
- Removed unused variables
- Coded to interfaces
- Added missing JavaDoc
Issue gh-6019
6 years ago
4e5a3a76cd
Open Saml2AuthenticationRequestContext
...
Fixed gh-8356
6 years ago
95f0d02d79
Polish Saml2WebSsoAuthenticationRequestFilter
...
- Updated formatting
- Reordered methods
- Removed a method
These changes will hopefully simplify future contribution.
Issue gh-6019
6 years ago
711954e016
Deprecate Saml2AuthenticationRequestFilter Constructor
...
Removing the default usage of OpenSamlAuthenticationRequestFactory.
Otherwise, the Open SAML dependency is required, even when
Saml2AuthenticationRequestFactory is implemented without it.
Fixes gh-8359
6 years ago
887cb99926
Saml2AuthenticationRequestFilter Tests
...
To confirm behavior still works as expected after making related changes.
Issue gh-8359
6 years ago
0ca65f8677
Add Missing JavaDoc
...
Issue gh-6019
6 years ago
a78872f268
Unlock dependencies for 5.3.1.RELEASE
...
This reverts commit 88c02684bb54effb483d460031f5007610851f80.
6 years ago
88c02684bb
Lock dependencies for 5.3.1.RELEASE
6 years ago
15cc15cc3c
Simplify OpenSamlImplementation
...
- Removed reflection usage
- Simplified method signatures
Issue gh-7711
Fixes gh-8147
6 years ago
1bbbf3be3d
Simplify Saml2ServletUtils
...
Removed one method as well as a parameter from another method
Issue gh-7711
6 years ago
7f2f210eb8
Simplify OpenSamlImplementation
...
- Removed reflection usage
- Simplified method signatures
Issue gh-7711
Fixes gh-8147
6 years ago
088ea07f07
Simplify Saml2ServletUtils
...
Removed one method as well as a parameter from another method
Issue gh-7711
6 years ago
32c02fbedb
Remove empty relay state from redirect url
6 years ago
6eadf7b140
Unlock dependencies for 5.3.0.RELEASE
...
This reverts commit 147d7dadd7e449e1e8347f9a0b3959c7abf095dc.
6 years ago
147d7dadd7
Lock dependencies for 5.3.0.RELEASE
6 years ago
3257349045
Support POST binding for AuthNRequest
...
Has been tested with
- Keycloak
- SSOCircle
- Okta
- SimpleSAMLPhp
This PR extends (builds on previous commits and adds user configuration
options)
https://github.com/spring-projects/spring-security/pull/7758
6 years ago
a51a202925
Correct signature handling for SAML2 AuthNRequest
...
Implements the following bindings for AuthNRequest
- REDIRECT
- POST (future PR)
Has been tested with
- Keycloak
- SSOCircle
- Okta
- SimpleSAMLPhp
Fixes gh-7711
6 years ago
43098d41cc
Revert "Correct signature handling for SAML2 AuthNRequest"
...
This reverts commit a3e09fadd77cb6bbacbd626c48deb2a4473e1e54.
Build failure on Java 9+
XML generation does not add linefeeds by default
Change since Java 8
6 years ago
a3e09fadd7
Correct signature handling for SAML2 AuthNRequest
...
Implements the following bindings for AuthNRequest
- REDIRECT
- POST (future PR)
Has been tested with
- Keycloak
- SSOCircle
- Okta
- SimpleSAMLPhp
Fixes gh-7711
6 years ago
84b8a5abd7
Unlock dependencies for next development version
...
This reverts commit 064616f1ef077cf23028d64b61b1452be0ec9eb1.
6 years ago
064616f1ef
Lock dependencies for 5.3.0.RC1
6 years ago
5678490c1f
Add relying party registration not found exception
...
Fixes: gh-7865
6 years ago
fcc6457bef
Unlock dependencies for next development version
...
This reverts commit 93acf8f0f11e2811b7d4241b26f712674978f3f7.
6 years ago
93acf8f0f1
Lock dependencies for 5.3.0.M1
6 years ago
9d26f12e86
Add an example of Base64 encoding that failed with java.util.Base64
...
Revert usage to Apache Commons Codec (dependency by OpenSaml)
6 years ago
af415948b1
Allow configuration of AuthenticationManagerResolver in saml2Login()
...
Fixes gh-7654
https://github.com/spring-projects/spring-security/issues/7654
6 years ago
59ca2ddf65
Polish SAML2 principal classes
...
Update @since
Issue: gh-7681
6 years ago
0782228914
fix: make Saml2Authentication serializable
6 years ago
da3f18017d
Polish SAML2 principal classes
...
Update @since
Issue: gh-7681
6 years ago
31b999e9b4
fix: make Saml2Authentication serializable
6 years ago
0c47bfb1e3
Remove empty relay state from redirect url
6 years ago
0cafcf37e2
Make the loginProcessingUrl configurable for saml2Login()
...
Fixes gh-7565
https://github.com/spring-projects/spring-security/issues/7565
7 years ago
a4430aa21b
Fix variable reference in sample code
7 years ago
0f14844acf
We will not validate IP addresses as part of assertion validation
...
Fixes gh-7514
https://github.com/spring-projects/spring-security/issues/7514
7 years ago
8ebfba3019
Support configuration of protocol binding for authentication requests
7 years ago
83b5f5c7ae
Improve the Saml2AuthenticationRequest object
...
- introduce the AssertionConsumerServiceURL attribute
- add javadoc
- align property name with SAML XML for AuthNRequest
7 years ago
9731386de5
Correctly set "Destination" in AuthNRequest message
...
Fixes gh-7494
https://github.com/spring-projects/spring-security/issues/7494
7 years ago
69eacac514
Fix javadoc for RelyingPartyRegistrationRepository
7 years ago
7adb4da3ef
Always require signature on either response or assertion
...
Fixes gh-7490
https://github.com/spring-projects/spring-security/issues/7490
7 years ago
22da2b45c9
SAML Assertion validation should propagate errors: #7375 and #7375
...
Fixes gh-7377
Fixes gh-7375
https://github.com/spring-projects/spring-security/issues/7377
https://github.com/spring-projects/spring-security/issues/7375
Clean up code
- Authentication request factory should only throw Saml2Exception
- OpenSamlImplementation should only throw Saml2Exception
- Move the OpenSamlImplementation package private methods to the right
section
7 years ago
Joe Grandja
Josh Cummings
shazin
Clement Stoquart
Filip Hanik
Eleftheria Stein
Clement Stoquart
Mike Truso
Brendt Lucas