Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
github.com/greenpau/origin_crewjam_saml
SAML library for go
https://github.com/greenpau/origin_crewjam_saml
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.4.2 to 4.4.3.
- ...
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9.
- [Rele...
* update etreeutils.TransformExcC14n signature
The invocation does not match the current func...
5a6e8ccedf6505fddbeafcee773779f17bc227e3 authored almost 2 years ago by Paul Greenberg <[email protected]>957d92a38d67c03c2ec81c605699571e1b0bf5c7 authored almost 2 years ago by Ross Kinder <[email protected]>
8b7e45896ba1bfa853358a970b860a549e3237d8 authored almost 2 years ago by Ross Kinder <[email protected]>
f98e7590b94634c0f65e2e435ad7d3c6f58840c6 authored almost 2 years ago by Stojan Dimitrovski <[email protected]>
9e43d2e4020725181065f9b933b8820dc16253c8 authored almost 2 years ago by Stojan Dimitrovski <[email protected]>
* capture session id with regexp
* revert auto formatting
* revert auto formatting
f892c9f9ba1f81462974056af4030883d60105d2 authored almost 2 years ago by Mathieu Deous <[email protected]>Improve test case for CookieName to include default
c77d60c62bd6b0d4421156a43dd34dfb99bd586d authored almost 2 years ago by Stephen Blackstone <[email protected]>* Fix to allow IDP Initiated logins to not rely on inexistent tracked request cookie
* Change...
9eb285e9692fb145910a809fd52fde6b97f4e98f authored almost 2 years ago by Chris Rollins <[email protected]>f7b2804119759ab2dae69829de2595586a46fb79 authored almost 2 years ago by David Sharnoff <[email protected]>
b527619d4f45d0193cb666252920c13d7a2b3d97 authored almost 2 years ago by IceCodeNew <[email protected]>
2d6a7927aae7e5af53e993d20ab4cedb6d722e13 authored almost 2 years ago by Simon Schuetz <[email protected]>
5aa5021169e9991cbd474309005efee7ba190617 authored almost 2 years ago by Keno Fischer <[email protected]>
d951aa2d145a90c26443e583ec011273ce97573a authored almost 2 years ago by David Venhoek <[email protected]>
b3297164df077d8920470e8e4ad8a721bdcf1e1e authored almost 2 years ago by Ross Kinder <[email protected]>
81735a50f6120900a1d1cb9c56ff92cb39c948b8 authored almost 2 years ago by Ross Kinder <[email protected]>
* add test case (courtesy of fwilhelm)
* fix
aee3fb1edeeaf1088fcb458727e0fd863d277f8b authored almost 2 years ago by Ross Kinder <[email protected]>5e0ffd290abf0be7dfd4f8279e03a963071544eb authored over 2 years ago by Ross Kinder <[email protected]>
f5193739b56955ab0d87a20ad09a2f2d584a401d authored over 2 years ago by Ross Kinder <[email protected]>
d74fd352075ee3860fa0bd8daef192e5a3b25f1c authored over 2 years ago by Ross Kinder <[email protected]>
a54444557d39de0f05a41a4569f87752c3a4c78a authored over 2 years ago by Ross Kinder <[email protected]>
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.7 to 0.5.8.
- [Rele...
Co-authored-by: korya <[email protected]>
e87e8389d0279cdeedaae5d533a8750f4e864f38 authored over 2 years ago by Ross Kinder <[email protected]>This reverts commit 1f7373b6cbc421ca84cf578afbb0d5d39a443818.
702b90c6842e3beeac122011f37a1825962917e6 authored over 2 years ago by Ross Kinder <[email protected]>824f7933cc194b57f1a371691bfc561116ef43c3 authored over 2 years ago by Ross Kinder <[email protected]>
a3bdfa1a94e77b64aa8cf3a6e079b16f69628b4f authored over 2 years ago by Ross Kinder <[email protected]>
Bumps [github.com/russellhaering/goxmldsig](https://github.com/russellhaering/goxmldsig) from 1....
1f7373b6cbc421ca84cf578afbb0d5d39a443818 authored over 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.4.1 to 4.4.2.
- ...
* Add NameIDFormat to metadata
* Fix metadata tests
* Fix tests on rebase
3573a32945bd509a469f38f2a5f686d73ab52601 authored over 2 years ago by Jguer <[email protected]>5a22b43b85e09ead695da27c11cc3c09f404c059 authored over 2 years ago by Alexander Zobnin <[email protected]>
* Add support for RequestedAuthnContext
Co-authored-by: David Venhoek <[email protected]>
7444b81da2996b175f637716e45c0457728b1416 authored over 2 years ago by Arjen <[email protected]>00a79cc1e7de8cc49f40a49d337bb77c36c8b46f authored over 2 years ago by Lulu <[email protected]>
* Fix ArtifactResolveElement and add tests
* goimports
d4ed82f19df6a5201af70c25608d1999313ae3d0 authored over 2 years ago by Arjen <[email protected]>* Allow to specify HTTPClient for SAML artifact resolution
* go fmt
224026ca8d53d7ad0dd20073fbafde801ce103ee authored over 2 years ago by Arjen <[email protected]>
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.2.0 to 4.4.1.
- ...
* upgrade golang.org/x/crypto from v0.0.0-20211215153901-e495a2d5b3d3 to v0.0.0-20220128200615-1...
34d029892e58c333e86b36ddc4d77c3354daa28c authored over 2 years ago by github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.6 to 0.5.7.
- [Rele...
Resolves #406
e007e418a04dddb5adf9ecf9abfb25cfbf684e31 authored almost 3 years ago by Andrew Svoboda <[email protected]>* upgrade golang.org/x/crypto from v0.0.0-20210322153248-0c34fe9e7dc2 to v0.0.0-20211215153901-e...
c81ab81f1b2a39c99c77e46e7aeb7025f1933957 authored almost 3 years ago by github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.1.0 to 4.2.0.
- ...
* Support multiple X509Certificate elements in X509Data
* Update test files
* Remove unnec...
60a32b32095ab361c827116afd3f0041874c6c9c authored almost 3 years ago by Ross Kinder <[email protected]>
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.5 to 0.5.6.
- [Rele...
cc1e81b5a55dbd8c960b3d1a505e377540ba0de4 authored almost 3 years ago by Ross Kinder <[email protected]>
* Implemented SP support for receiving authentication results via artifact
binding.
* update...
71e1cdcdcf486d99e6ac5e8cfb5f7274299969f7 authored almost 3 years ago by Ross Kinder <[email protected]>d5716f6b5729dc13632d8905661f83117981d5fc authored almost 3 years ago by Philipp Ritter <[email protected]>
0771d8f630005c6707e0cd295a1d7ec1cc303289 authored almost 3 years ago by Matt Magurany <[email protected]>
* Add support for aes128-gcm algorithm
* Pass nonce to encrypt function and add some tests
2db94e7bc785369d43a4f8984ca7f5c4c419a23a authored almost 3 years ago by Olfa Karoui <[email protected]>96274277388132e4ae491695f0b2b303d97f39a5 authored almost 3 years ago by Bharat <[email protected]>
* add /logout to initiate SLO request
* fix
* unused package
* gofmt-ed
23acdd225ab1a203272d77942c6e0d5b8c364e5e authored almost 3 years ago by Francesco Cartier <[email protected]>324aadd28430a15fe7fc984c50e872e1fd267e80 authored almost 3 years ago by Matt Magurany <[email protected]>
* Switch from github.com/form3tech-oss/jwt-go to github.com/golang-jwt/jwt/v4
* Fix tests for...
d321463f84da59c450efac778a079ba3db080639 authored almost 3 years ago by Jérémy Lourenço <[email protected]>
From
https://www.oasis-open.org/committees/download.php/56785/sstc-saml-metadata-errata-2.0-wd-...
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
b115a403cd4f03e7222975f16f8c1b55b7128b94 authored over 3 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>* Change dgrijalva/jwt-go imported module to form3tech-oss/jwt-go.
dgrijalva/jwt-go is abando...
0f63febe30197e3289aebc5acbc56176dd542835 authored over 3 years ago by Bay Grabowski <[email protected]>Co-authored-by: crewjam <[email protected]>
af97bd20fe4184d3093a1ae811ecfdafb9170752 authored over 3 years ago by github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>* upgrade golang.org/x/crypto from v0.0.0-20210317152858-513c2a44f670 to v0.0.0-20210322153248-0...
bd15f54347cdfffae43ac6697ea4ba6bbe5f1379 authored over 3 years ago by github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>fixes #333
c0905422f397de1669507c8291e6768ac4b7d4c0 authored over 3 years ago by Ross Kinder <[email protected]>* Bump github.com/google/go-cmp from 0.5.4 to 0.5.5
Bumps [github.com/google/go-cmp](https://...
5f7364e1d80efae2551767938d990fae5dec8ab7 authored over 3 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>* upgrade github.com/mattermost/xml-roundtrip-validator from v0.0.0-20201219040909-8fd2afad43d1 ...
844adc98f3441076a7f80a52abb4991f8563fc9e authored over 3 years ago by github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>0e039c05c197ccfc3376643f2a8186feb808d38c authored over 3 years ago by Harold Alcala <[email protected]>
XML Signature Wrapping attacks are unfortunately still very common
in SAML implementations. cre...
86638df35b388cd73d4b3de194b0fecd54420b95 authored over 3 years ago by yuki2006 <[email protected]>
* Fix signing for HTTP-Redirect binding
The currently implemented behavior for signing AuthN ...
18eee015b78987e273c0d147fc91e6ea5427319f authored over 3 years ago by Ioannis Kakavas <[email protected]>
* upgrade github.com/crewjam/httperr from v0.0.0-20190612203328-a946449404da to v0.2.0
* upgrade...
4ffb03cdf85e80c08f10cae20c340e376633117f authored almost 4 years ago by Ross Kinder <[email protected]>
cc43707e1e85a5a782b0d3e12291fa38d6bf9599 authored almost 4 years ago by Ross Kinder <[email protected]>
bca570abb2ce76b0c0e4ff8f1818211351d52ccb authored almost 4 years ago by Ross Kinder <[email protected]>
d00c43e124c12c02529119361f75edfef7ed885f authored almost 4 years ago by Ross Kinder <[email protected]>
dbb13a85b906958362c63da2cacd2a6aebde1311 authored almost 4 years ago by Ross Kinder <[email protected]>
This silences a warning from golangci-lint
6f84a3f0c1e9d367bbcd4db411f8f8ac3036ee12 authored almost 4 years ago by Ross Kinder <[email protected]>c2702ea1c2067d310612e226c88549fbde26ac0a authored almost 4 years ago by Ross Kinder <[email protected]>
45502586594e00ccd311e80c7c9b7b61ed5c86c7 authored almost 4 years ago by Alexander Zobnin <[email protected]>
re #312
48af097d09790b57bb9f0f47bf030f098575601c authored almost 4 years ago by Ross Kinder <[email protected]>
* remove deprecated fields
* update readme
92f529c424c5b9780f195a8d14fe2d59d2034b83 authored almost 4 years ago by Ross Kinder <[email protected]>
3bb7a4b19e07bb3d4331223759bbc5ab72b04e87 authored almost 4 years ago by Ross Kinder <[email protected]>
With this change we no longer validate InResponseTo when AllowIDPInitiated is set. Here's why:
...
9ce1492702a0f55d8b34e5ad195271498fc8de25 authored almost 4 years ago by Ross Kinder <[email protected]>60138500b8386e45fdfd11590ef8a2ddd32b8296 authored almost 4 years ago by Ross Kinder <[email protected]>
e98610046e31c3bc76037f8e514c95cdee986897 authored almost 4 years ago by Ross Kinder <[email protected]>
243bfae226148c75e8d604569b421210c49336d6 authored almost 4 years ago by Ross Kinder <[email protected]>
6614c51c839b813319770ca25cc625e0a2f711aa authored almost 4 years ago by Ross Kinder <[email protected]>
6ab128f6ca9f281533e22550799a6b6f89df05bc authored almost 4 years ago by AlekseyZolotuhin <[email protected]>
c30d706d3afd3562cdd43b5d16344ba730efc6ba authored almost 4 years ago by Alan Shreve <[email protected]>
* add xUserId and xAccountId for session
* add CustomAttributes for idp session content
99bc9e106a000bd4f3615a1fbfbc001862a02866 authored almost 4 years ago by Alex Yan <[email protected]>61ad7bf8fd3f1dbcfc5266584e8a6d86501de56d authored almost 4 years ago by neilli-sable <[email protected]>
6f60b3c5017d3671eefd63ce7593c38060c6221d authored almost 4 years ago by andy2046 <[email protected]>
3e96b140256abd2e7cda783f2f71b2d3ac9eece8 authored almost 4 years ago by andy2046 <[email protected]>
0dd2422c212ea42de10cf84ca33e8dbe404b1bee authored almost 4 years ago by Ross Kinder <[email protected]>
This change validates that the XML input we receive is safe to parse before
passing it to the st...
There was a signature validation bypass in goxmldsig, which saml uses to
authenticate assertions...
9a3d01f980e50b1137f2c35713522bd152cb1485 authored about 4 years ago by Ross Kinder <[email protected]>
6437b54eee9634ed748746be53c57c7cdee4541b authored about 4 years ago by Ross Kinder <[email protected]>
27486cc8049981bf7e404631db8b8a1d1e47028b authored about 4 years ago by Ross Kinder <[email protected]>
7b5f0d5875fcd3cf72ca9935f14c28cf17e1ba4c authored about 4 years ago by Ross Kinder <[email protected]>
Fixes #275
c6a85f7b0859764569b530b22e32cb87a246c703 authored about 4 years ago by Daniel Cormier <[email protected]>Renamed LocalizedName & LocalizedURI Lang attributes -> `xml:"http://www.w3.org/XML/1998/namespa...
c04b06a758753f3c874f1708c04dce99d45c70c9 authored about 4 years ago by bstrueb <[email protected]>* Fixes handling signed response with encrypted assertions
When the response is signed, the v...
a526f454318001e6d51f18b47637347780a08db8 authored about 4 years ago by Ricardo Andrade <[email protected]>
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.5.1 to 1.6.1.
-...
Bumps [github.com/kr/pretty](https://github.com/kr/pretty) from 0.2.0 to 0.2.1.
- [Release note...