- update to 1.14.0:
* Add support for python 3.10 and cleanup the GHA
* Remove stats from coveralls removed as they are no longer maintained
* Add rejectDeprecatedAlgorithm settings in order to be able reject messages
signed with deprecated algorithms
* Support building a LogoutResponse with non-success status
* Replace double-underscored names with single underscores
* Deprecate server_port from request data dictionary
OBS-URL: https://build.opensuse.org/request/show/978650
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-python3-saml?expand=0&rev=6
* Add support for python 3.10 and cleanup the GHA
* Remove stats from coveralls removed as they are no longer maintained
* Add rejectDeprecatedAlgorithm settings in order to be able reject messages
signed with deprecated algorithms
* Support building a LogoutResponse with non-success status
* Replace double-underscored names with single underscores
* Deprecate server_port from request data dictionary
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python3-saml?expand=0&rev=12
- Update to 1.11.0:
- #261 Allow duplicate named attributes, controlled by a new
setting
- #268 Make the redirect scheme matcher case-insensitive
- #256 Improve signature validation process. Add an option to
use query string for validation
- #259 Add get metadata timeout
- #246 Add the ability to change the ProtocolBinding in the
authn request.
- #248 Move storing the response data into its own method in
the Auth class
- Remove the dependency on defusedxml
- #241 Improve AttributeConsumingService support
- Update expired dates from test responses
- The test suite is still ignored.
OBS-URL: https://build.opensuse.org/request/show/907875
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-python3-saml?expand=0&rev=5
- #261 Allow duplicate named attributes, controlled by a new
setting
- #268 Make the redirect scheme matcher case-insensitive
- #256 Improve signature validation process. Add an option to
use query string for validation
- #259 Add get metadata timeout
- #246 Add the ability to change the ProtocolBinding in the
authn request.
- #248 Move storing the response data into its own method in
the Auth class
- Remove the dependency on defusedxml
- #241 Improve AttributeConsumingService support
- Update expired dates from test responses
- The test suite is still ignored.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python3-saml?expand=0&rev=11
- The test suite is a complete disaster right now, switching it
off (gh#onelogin/python3-saml#272).
- Update to 1.10.1:
- Fix bug on LogoutRequest class, get_idp_slo_response_url was
used instead get_idp_slo_url
- Added custom lxml parser based on the one defined at
xmldefused. Parser will ignore comments and processing
instructions and by default have deactivated huge_tree, DTD
and access to external documents
- Destination URL Comparison is now case-insensitive for netloc
- Support single-label-domains as valid. New security parameter
allowSingleLabelDomains
- Added get_idp_sso_url, get_idp_slo_url and
get_idp_slo_response_url methods to the Settings class and
use it in the toolkit
- #212 Overridability enhancements. Made classes overridable by
subclassing. Use of classmethods instead staticmethods
- Add get_friendlyname_attributes support
- Remove external lib method get_ext_lib_path. Add
set_cert_path in order to allow set the cert path in a
different folder than the toolkit
- Add sha256 instead sha1 algorithm for sign/digest as
recommended value on documentation and settings
- #178 Support for adding idp.crt from filesystem
- Add samlUserdata to demo-flask session
- Fix autoreloading in demo-tornado
- Remove bug-testDecryptElement.patch, which has been included
upstream.
OBS-URL: https://build.opensuse.org/request/show/906658
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-python3-saml?expand=0&rev=4
- Fix bug on LogoutRequest class, get_idp_slo_response_url was
used instead get_idp_slo_url
- Added custom lxml parser based on the one defined at
xmldefused. Parser will ignore comments and processing
instructions and by default have deactivated huge_tree, DTD
and access to external documents
- Destination URL Comparison is now case-insensitive for netloc
- Support single-label-domains as valid. New security parameter
allowSingleLabelDomains
- Added get_idp_sso_url, get_idp_slo_url and
get_idp_slo_response_url methods to the Settings class and
use it in the toolkit
- #212 Overridability enhancements. Made classes overridable by
subclassing. Use of classmethods instead staticmethods
- Add get_friendlyname_attributes support
- Remove external lib method get_ext_lib_path. Add
set_cert_path in order to allow set the cert path in a
different folder than the toolkit
- Add sha256 instead sha1 algorithm for sign/digest as
recommended value on documentation and settings
- #178 Support for adding idp.crt from filesystem
- Add samlUserdata to demo-flask session
- Fix autoreloading in demo-tornado
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python3-saml?expand=0&rev=8
- Update to 1.7.0:
* Adjusted acs endpoint to extract NameQualifier and SPNameQualifier from
SAMLResponse.
* Adjusted single logout service to provide NameQualifier and SPNameQualifier
to logout method.
* Add getNameIdNameQualifier to Auth and SamlResponse.
* Extend logout method from Auth and LogoutRequest constructor to support.
* Added get_in_response_to method to Response and LogoutResponse classes
* Update defusexml dependency
OBS-URL: https://build.opensuse.org/request/show/717586
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-python3-saml?expand=0&rev=2
* Adjusted acs endpoint to extract NameQualifier and SPNameQualifier from
SAMLResponse.
* Adjusted single logout service to provide NameQualifier and SPNameQualifier
to logout method.
* Add getNameIdNameQualifier to Auth and SamlResponse.
* Extend logout method from Auth and LogoutRequest constructor to support.
* Added get_in_response_to method to Response and LogoutResponse classes
* Update defusexml dependency
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python3-saml?expand=0&rev=4
- Add explicit dependency on libxmlsec1-openssl1, recommended
by dependency python-xmlsec so this package may be used without
needing to select a libxmlsec backend
- Activate test suite, adding bug-testDecryptElement.patch to
workaround a test failure, and remove bcond test
- Build for Python 2, as support has been added upstream
- Remove unnecessary build dependency on python-devel
- Use %license
- Remove live dependency_links and remove == pins from setup.py,
so installed egg-info isnt broken
- Update to v1.6.0
* Add support for Subjects on AuthNRequests by the new
name_id_value_req parameter
* Fix for SLO when XML specifies encoding
* Fixed setting NameFormat attribute for AttributeValue tags
- from v1.5.0
* Security improvements. Use of tagid to prevent XPath injection
Disable DTD on fromstring defusedxml method
* Check that the response has all of the AuthnContexts provided
* Adapt renders from Django demo for Django 1.11 version
* If debug enable, print reason for the SAMLResponse invalidation
* Fix DSA constant
* Support NameID children inside of AttributeValue elements
- from v1.4.1
* Add ID to EntityDescriptor before sign it on add_sign method
* Update defusedxml dependencies
* Update copyright and license reference
- from 1.4.0
* Fix CVE-2017-11427. Process text of nodes properly, ignoring comments
* Improve how fingerprint is calcultated
* Fix issue with LogoutRequest rejected by ADFS due NameID with
unspecified format instead no format attribute
* Fix signature position in the SP metadata
* Preserve xmlns:xs namespace when signing and serializing responses
* Redefine NSMAP constant
* Updated Django demo (Django 1.11)
OBS-URL: https://build.opensuse.org/request/show/693026
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python3-saml?expand=0&rev=1
