mirror of https://github.com/dexidp/dex.git
Tree:
4792f0c59f
artifact-workflow
dependabot/go_modules/api/v2/google.golang.org/grpc-1.80.0
dependabot/go_modules/github.com/fsnotify/fsnotify-1.10.0
dependabot/go_modules/github.com/mattn/go-sqlite3-1.14.44
fix-google-admin-regression
helm
master
v1
v2.0.x
v2.1.x
v2.10.x
v2.13.x
v2.16.x
v2.2.x
v2.28.x
v2.3.x
v2.30.x
v2.31.x
v2.32.x
v2.33.x
v2.34.x
v2.35.x
v2.36.x
v2.37.x
v2.38.x
v2.39.x
v2.4.x
v2.40.x
v2.41.x
v2.42.x
v2.43.x
v2.45.x
v2.5.x
v2.6.x
v2.7.x
v2.8.x
v2.9.x
api/v2.0.0
api/v2.1.0
api/v2.2.0
api/v2.3.0
api/v2.4.0
v0.1.0
v0.2.0
v0.2.1
v0.2.2
v0.2.3
v0.3.0
v0.4.0
v0.5.0
v0.5.1
v0.6.0
v0.6.1
v2.0.0
v2.0.0-alpha.1
v2.0.0-alpha.2
v2.0.0-alpha.3
v2.0.0-alpha.4
v2.0.0-alpha.5
v2.0.0-beta.1
v2.0.0-beta.2
v2.0.0-beta.3
v2.0.1
v2.0.2
v2.1.0
v2.10.0
v2.11.0
v2.12.0
v2.13.0
v2.14.0
v2.15.0
v2.16.0
v2.17.0
v2.18.0
v2.19.0
v2.2.0
v2.2.1
v2.2.2
v2.2.3
v2.2.4
v2.2.5
v2.20.0
v2.21.0
v2.22.0
v2.23.0
v2.24.0
v2.25.0
v2.26.0
v2.27.0
v2.28.0
v2.28.1
v2.29.0
v2.3.0
v2.3.1
v2.30.0
v2.30.1
v2.30.2
v2.30.3
v2.31.0
v2.31.1
v2.31.2
v2.32.0
v2.32.1
v2.33.0
v2.33.1
v2.34.0
v2.35.0
v2.35.1
v2.35.2
v2.35.3
v2.36.0
v2.37.0
v2.38.0
v2.39.0
v2.39.1
v2.4.0
v2.4.1
v2.40.0
v2.41.0
v2.41.1
v2.42.0
v2.42.1
v2.43.0
v2.43.1
v2.44.0
v2.45.0
v2.45.1
v2.5.0
v2.6.0
v2.6.1
v2.7.0
v2.7.1
v2.8.0
v2.8.1
v2.9.0
${ noResults }
1 Commits (4792f0c59f833e6a9175ac7c199d7a72bc052d2e)
| Author | SHA1 | Message | Date |
|---|---|---|---|
Eric Chiang
|
a97cffcd52 |
connector/saml: refactor tests and add self-signed responses
Introduces SAML tests which execute full response processing and compare user attributes. tesdata now includes a full, self-signed CA and documents signed using xmlsec1. Adds deprication notices to existing tests, but don't remove them since they still provide coverage. |
9 years ago |
Holger Koser
|
e46f2ebe40 |
Improve SAML Signature and Response Validation
* Improve Order of Namespace Declarations and Attributes in Canonical XML. This is related to an issue in goxmldsig for which I created an [pull request](https://github.com/russellhaering/goxmldsig/pull/17). * Do not compress the AuthnRequest if `HTTP-POST` binding is used. * SAML Response is valid if the Message and/or the Assertion is signed. * Add `AssertionConsumerServiceURL` to `AuthnRequest` * Validate Status on the Response * Validate Conditions on the Assertion * Validation SubjectConfirmation on the Subject |
9 years ago |