2021-07-08 15:27:30 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jul 8 09:57:53 UTC 2021 - Matej Cepl <mcepl@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.10.1:
|
|
|
|
|
- Fix bug on LogoutRequest class, get_idp_slo_response_url was
|
|
|
|
|
used instead get_idp_slo_url
|
|
|
|
|
- Added custom lxml parser based on the one defined at
|
|
|
|
|
xmldefused. Parser will ignore comments and processing
|
|
|
|
|
instructions and by default have deactivated huge_tree, DTD
|
|
|
|
|
and access to external documents
|
|
|
|
|
- Destination URL Comparison is now case-insensitive for netloc
|
|
|
|
|
- Support single-label-domains as valid. New security parameter
|
|
|
|
|
allowSingleLabelDomains
|
|
|
|
|
- Added get_idp_sso_url, get_idp_slo_url and
|
|
|
|
|
get_idp_slo_response_url methods to the Settings class and
|
|
|
|
|
use it in the toolkit
|
|
|
|
|
- #212 Overridability enhancements. Made classes overridable by
|
|
|
|
|
subclassing. Use of classmethods instead staticmethods
|
|
|
|
|
- Add get_friendlyname_attributes support
|
|
|
|
|
- Remove external lib method get_ext_lib_path. Add
|
|
|
|
|
set_cert_path in order to allow set the cert path in a
|
|
|
|
|
different folder than the toolkit
|
|
|
|
|
- Add sha256 instead sha1 algorithm for sign/digest as
|
|
|
|
|
recommended value on documentation and settings
|
|
|
|
|
- #178 Support for adding idp.crt from filesystem
|
|
|
|
|
- Add samlUserdata to demo-flask session
|
|
|
|
|
- Fix autoreloading in demo-tornado
|
|
|
|
|
|
2020-03-20 11:04:50 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 20 10:36:31 UTC 2020 - pgajdos@suse.com
|
|
|
|
|
|
|
|
|
|
- version update to 1.9.0
|
|
|
|
|
* Allow any number of decimal places for seconds on SAML datetimes
|
|
|
|
|
* Fix failOnAuthnContextMismatch code
|
|
|
|
|
* Improve signature validation when no reference uri
|
|
|
|
|
* Update demo versions. Improve them and add Tornado demo.
|
|
|
|
|
|
2019-07-22 13:09:08 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Jul 22 13:05:59 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.7.0:
|
|
|
|
|
* Adjusted acs endpoint to extract NameQualifier and SPNameQualifier from
|
|
|
|
|
SAMLResponse.
|
|
|
|
|
* Adjusted single logout service to provide NameQualifier and SPNameQualifier
|
|
|
|
|
to logout method.
|
|
|
|
|
* Add getNameIdNameQualifier to Auth and SamlResponse.
|
|
|
|
|
* Extend logout method from Auth and LogoutRequest constructor to support.
|
|
|
|
|
* Added get_in_response_to method to Response and LogoutResponse classes
|
|
|
|
|
* Update defusexml dependency
|
|
|
|
|
|
2019-04-11 08:04:25 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Apr 10 16:35:14 UTC 2019 - John Vandenberg <jayvdb@gmail.com>
|
|
|
|
|
|
|
|
|
|
- Add explicit dependency on libxmlsec1-openssl1, recommended
|
|
|
|
|
by dependency python-xmlsec so this package may be used without
|
|
|
|
|
needing to select a libxmlsec backend
|
|
|
|
|
- Activate test suite, adding bug-testDecryptElement.patch to
|
|
|
|
|
workaround a test failure, and remove bcond test
|
|
|
|
|
- Build for Python 2, as support has been added upstream
|
|
|
|
|
- Remove unnecessary build dependency on python-devel
|
|
|
|
|
- Use %license
|
|
|
|
|
- Remove live dependency_links and remove == pins from setup.py,
|
|
|
|
|
so installed egg-info isnt broken
|
|
|
|
|
- Update to v1.6.0
|
|
|
|
|
* Add support for Subjects on AuthNRequests by the new
|
|
|
|
|
name_id_value_req parameter
|
|
|
|
|
* Fix for SLO when XML specifies encoding
|
|
|
|
|
* Fixed setting NameFormat attribute for AttributeValue tags
|
|
|
|
|
- from v1.5.0
|
|
|
|
|
* Security improvements. Use of tagid to prevent XPath injection
|
|
|
|
|
Disable DTD on fromstring defusedxml method
|
|
|
|
|
* Check that the response has all of the AuthnContexts provided
|
|
|
|
|
* Adapt renders from Django demo for Django 1.11 version
|
|
|
|
|
* If debug enable, print reason for the SAMLResponse invalidation
|
|
|
|
|
* Fix DSA constant
|
|
|
|
|
* Support NameID children inside of AttributeValue elements
|
|
|
|
|
- from v1.4.1
|
|
|
|
|
* Add ID to EntityDescriptor before sign it on add_sign method
|
|
|
|
|
* Update defusedxml dependencies
|
|
|
|
|
* Update copyright and license reference
|
|
|
|
|
- from 1.4.0
|
|
|
|
|
* Fix CVE-2017-11427. Process text of nodes properly, ignoring comments
|
|
|
|
|
* Improve how fingerprint is calcultated
|
|
|
|
|
* Fix issue with LogoutRequest rejected by ADFS due NameID with
|
|
|
|
|
unspecified format instead no format attribute
|
|
|
|
|
* Fix signature position in the SP metadata
|
|
|
|
|
* Preserve xmlns:xs namespace when signing and serializing responses
|
|
|
|
|
* Redefine NSMAP constant
|
|
|
|
|
* Updated Django demo (Django 1.11)
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Oct 25 16:22:46 UTC 2017 - sean.marlow@suse.com
|
|
|
|
|
|
|
|
|
|
- Intial package. v1.3.0
|
|
|
|
|
|
