3
* debian/changelog: new upstream release
7
* NEWS, doap.rdf: updated news and doap.rdf with 0.6.3 release data
11
* lasso/id-wsf/discovery.c: fixed typo in docstring
15
* docs/reference/tmpl/data_service.sgml,
16
docs/reference/tmpl/discovery.sgml,
17
docs/reference/tmpl/name_identifier_mapping.sgml,
18
docs/reference/tmpl/name_registration.sgml: minor automated changes
22
* Makefile.am: removed c# dir from distribution
26
* swig/Lasso-wsf.i: security mech id is optional
30
* lasso/id-wsf/wsf_profile.c: Fixed local variable declaration.
34
* lasso/id-wsf/discovery.c: Uncomment
35
lasso_wsf_profile_build_soap_response_msg() in
36
lasso_discovery_build_response_msg().
40
* lasso/id-wsf/discovery.c: 80 cols for docstrings
44
* lasso/id-wsf/wsf_profile.c: Added x509 certificate file tests.
48
* lasso/id-wsf/wsf_profile_private.h: Added private function
49
lasso_wsf_profile_get_fault().
53
* lasso/id-wsf/discovery.c, lasso/id-wsf/wsf_profile.c: Added a
54
first support of soap binding Fault wsf response.
58
* lasso/xml/Makefile.am, lasso/xml/soap_fault.c,
59
lasso/xml/soap_fault.h: Added soap Fault element.
63
* configure.ac: disabled mcs test and updated version to 0.6.3
67
* java/Makefile.am, perl/Makefile.am, php/Makefile.am,
68
python/Makefile.am: swig files were split, dependencies needed to
73
* docs/reference/tmpl/login.sgml: fixed spelling
77
* lasso/extract_symbols.py, lasso/extract_types.py: acknowledge new
78
lasso_sec_ category, only used for wsf.
82
* docs/lasso-book/liberty-architecture.rst: fixed typo
86
* lasso/id-wsf/discovery.c, lasso/id-wsf/wsf_profile_private.h:
87
Added missing wsf_profile_private.h. fixed error while attempting
88
to include non existing private header discovery_private.h
92
* swig/Lasso-wsf.i: Updated binding for new optional security
97
* lasso/id-wsf/data_service.c, lasso/id-wsf/data_service.h,
98
lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h: Discovery and
99
DataSerivice can pass X509 authentication mecanism if needed.
103
* lasso/id-wsf/wsf_profile.c, lasso/id-wsf/wsf_profile.h: Added
104
X509 authentication mecanism.
108
* lasso/id-ff/provider.c, lasso/id-ff/providerprivate.h: Added
109
private method lasso_provider_get_public_key() to get public key
114
* lasso/id-wsf/data_service_private.h: Added private method.
118
* lasso/id-wsf/wsf_profile.c: Ordered methods.
122
* lasso/id-wsf/data_service.h: lasso_data_service_add_credential()
123
is not a public method.
127
* lasso/id-wsf/discovery.h: lasso_discovery_build_credential() is
128
not a plublic method.
132
* lasso/id-wsf/discovery.c: lasso_discovery_build_credential() adds
133
AuthenticationStatemet element in Assertion.
137
* lasso/id-wsf/data_service.c: Fixed code typing.
141
* swig/Lasso-wsf.i: Added optional param security_mech_id for wsf
146
* lasso/id-wsf/authentication.c, lasso/id-wsf/data_service.c,
147
lasso/id-wsf/data_service.h, lasso/id-wsf/discovery.c,
148
lasso/id-wsf/discovery.h, lasso/id-wsf/wsf_profile.c,
149
lasso/id-wsf/wsf_profile.h: First attempt to implement
150
authentication security mechanism. Only SAML is implemented and it
155
* lasso/xml/soap_body.c, lasso/xml/soap_body.h: Added id attribute
160
* lasso/xml/disco_credentials.c: Fixed snippet definition of
165
* lasso/xml/Makefile.am: Added compilation of resource access
170
* lasso/xml/strings.h: Added security namespace for resource access
175
* lasso/xml/sec_resource_access_statement.c,
176
lasso/xml/sec_resource_access_statement.h: Added
177
ResourceAccessStatement element from wsf Security.
181
* lasso/id-ff/identity.c, swig/Lasso.i: getOfferings without
182
parameters will return all of them
186
* configure.ac: disabled c# support for the time being
190
* docs/reference/Makefile.am, docs/reference/lasso.types,
191
docs/reference/lasso.types.in: generation of lasso.types so it only
192
includes wsf classes if wsf is compiled in.
196
* README.JAVA: updated java note
200
* lasso/Makefile.am: erroneously disabled symbols.sym
204
* docs/reference/lasso-sections.txt, lasso/id-wsf/data_service.c,
205
lasso/id-wsf/data_service.h, lasso/xml/dst_modify.c,
206
lasso/xml/dst_modify_response.c, lasso/xml/dst_query.c,
207
lasso/xml/dst_query_response.c, lasso/xml/xml.c, swig/Lasso.i,
208
lasso/xml/xml.h: possibility to register new dst services.
212
* lasso/id-wsf/data_service.c, lasso/xml/dst_query.c,
213
lasso/xml/dst_query.h, swig/Lasso-wsf.i: data_service_init_query
214
may be called without parameters.
218
* lasso/id-wsf/data_service.c: lasso_data_service_get_answer() :
219
verify response->Data is not NULL before accessing it.
223
* lasso/id-wsf/discovery.c:
224
lasso_discovery_get_resource_offering_auto() : verify
225
LASSO_WSF_PROFILE(discovery)->session is not NULL before looking
226
for a resource offering.
230
* lasso/id-wsf/discovery.c: Fixed typing code error.
234
* java/.cvsignore: Updated ignored java files.
238
* swig/Lasso-wsf.i: Removed XmlNode binding in swig. Not used
243
* docs/reference/lasso-sections.txt, lasso/id-wsf/discovery.c:
244
Added lasso_discovery_get_services() method documentation
248
* lasso/id-wsf/discovery.c: Missing attributes in the last commit.
252
* lasso/id-wsf/data_service.h, swig/Lasso-wsf.i,
253
swig/inheritance.h: Added attributes provider_id and
254
abstract_description in lassoDataService.
258
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
259
swig/Lasso-wsf.i: Added method lasso_discovery_get_services() : it
260
returns a list of available services offering resource of
265
* lasso/id-ff/identity.c, lasso/id-wsf/discovery.c,
266
lasso/id-wsf/identity.h: Updated
267
lasso_discovery_build_modify_response_msg() : now it sets status
268
code to OK only if every remove entry are possible.
272
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
273
swig/Lasso-wsf.i: Added
274
lasso_discovery_get_service_with_providerId()..
278
* swig/Lasso-wsf-disco.i, swig/Lasso-wsf-dst.i,
279
swig/Lasso-wsf-is.i, swig/Lasso-wsf-sa.i, swig/Lasso-wsf-soap.i,
280
swig/Lasso-wsf.i: Splitted existing Lasso-wsf.i in several files
281
for eache wsf namespace (disco, dst, sa, is, soap)
285
* lasso/id-wsf/data_service.c: check the query response is of the
290
* swig/Lasso-wsf.i: new modify things for LassoPersonalProfile
294
* lasso/id-wsf/data_service.c: complete last commit.
298
* lasso/id-wsf/data_service.c, lasso/id-wsf/data_service.h,
299
swig/Lasso-wsf.i: Now an AP can process a Modify request and return
300
an updated data resource to application.
304
* swig/Lasso-wsf.i: added getAnswerForItemId binding
308
* lasso/xml/dst_modify.c, lasso/xml/dst_modify.h,
309
lasso/xml/dst_modify_response.c, lasso/xml/dst_modify_response.h,
310
lasso/xml/dst_query.h, lasso/xml/dst_query_response.h: restore
311
prefix and href for dst:Modify and dst:ModifyResponse
315
* lasso/id-wsf/data_service.c, lasso/id-wsf/data_service.h,
316
swig/Lasso-wsf.i, swig/Lasso.i: Updated
317
lasso_data_service_init_modify(). Now it takes a select (a String
318
type) and a String xml as parameters.
322
* docs/reference/lasso-sections.txt: added
323
lasso_data_service_get_answer_for_item_id
327
* lasso/id-wsf/data_service.h: added missing ;
331
* lasso/id-wsf/data_service.c, lasso/id-wsf/data_service.h: added
332
lasso_data_service_get_answer_for_item_id
336
* lasso/id-wsf/data_service.h, lasso/id-wsf/discovery.h: marks
337
public structure memebers in LassoDiscovery and LassoDataService
341
* docs/reference/tmpl/data_service.sgml: continuing on disco
342
example, use the service to retrieve principal name.
346
* lasso/id-wsf/data_service.c: explicit cases where item_id may be
351
* java/Makefile.am: Replaced ProfileService.java by
356
* lasso/id-wsf/data_service.c: add_query_item must checks the query
361
* swig/Lasso.i: Do not use SWIG_UnknownError but SWIG_RuntimeError
362
so it is translated to a catchable exception in Java. Use
363
SWIG_ValueError for value errors (things like invalid args)
367
* python/tests/profiles_tests.py: it is no longer possible to add
368
providers with unknown public keys
372
* lasso/id-ff/defederation.h: moved private_data erroneously placed
373
in class to object; this breaks ABI for classes inheriting from
374
LassoDeferation; nobody does that, ignoring.
378
* swig/Lasso-wsf.i: last bit of LassoProfileService got renamed
382
* docs/reference/lasso-sections.txt, docs/reference/lasso.sgml,
383
docs/reference/tmpl/data_service.sgml,
384
docs/reference/tmpl/defederation.sgml,
385
docs/reference/tmpl/federation.sgml,
386
docs/reference/tmpl/identity.sgml,
387
docs/reference/tmpl/lib_authn_request.sgml,
388
docs/reference/tmpl/login.sgml, docs/reference/tmpl/logout.sgml,
389
docs/reference/tmpl/name_identifier_mapping.sgml,
390
docs/reference/tmpl/name_registration.sgml,
391
docs/reference/tmpl/node.sgml, docs/reference/tmpl/profile.sgml,
392
docs/reference/tmpl/provider.sgml,
393
docs/reference/tmpl/saml_name_identifier.sgml,
394
docs/reference/tmpl/server.sgml, docs/reference/tmpl/session.sgml,
395
docs/reference/tmpl/strings.sgml, lasso/Makefile.am,
396
lasso/id-ff/providerprivate.h, lasso/id-wsf/Makefile.am,
397
lasso/id-wsf/data_service.c, lasso/id-wsf/data_service.h,
398
lasso/id-wsf/data_service_private.h, lasso/id-wsf/discovery.c,
399
lasso/id-wsf/discovery.h, lasso/id-wsf/personal_profile_service.c,
400
lasso/id-wsf/personal_profile_service.h,
401
lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
402
lasso/id-wsf/profile_service_private.h, swig/Lasso-wsf.i: renamed
403
ProfileService to DataService
407
* lasso/id-ff/provider.c: include xmlsec errors.h header to get
408
function declaration; a return in the middle of load_public_key got
413
* docs/reference/tmpl/discovery.sgml: documentation for discovery
417
* lasso/id-ff/provider.c, lasso/id-ff/server.c: don't output xmlsec
418
errors when trying to get a working public key but fails with a
419
message if it can't find a key.
423
* docs/reference/lasso-sections.txt: doc for discovery and
428
* swig/Lasso-wsf.i: Updated swig binding for latest id-wsf udpates.
432
* lasso/id-wsf/personal_profile_service.c: Removed
433
lasso_personal_profile_service_init_modify().
437
* lasso/id-wsf/profile_service.c: Removed prefix and href in
438
lasso_profile_service_init_modify,
439
lasso_profile_service_process_modify_msg,
440
lasso_profile_service_process_response_msg,
441
lasso_profile_service_validate_modify
445
* lasso/id-ff/logout.c: don't check for remote provider id before
446
checking for possible empty answer.
450
* lasso/id-wsf/profile_service.h: Removed prefix and href in
451
lasso_profile_service_init_modify,
452
lasso_profile_service_process_modify_msg
453
lasso_profile_service_process_response_msg,
454
lasso_profile_service_validate_modify
458
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h: Removed
459
lasso_discovery_new_from_dump, lasso_discovery_dump,
460
lasso_discovery_add_resource_offering,
461
lasso_discovery_init_query_full
465
* lasso/id-ff/server.h: sync arg name in header file with real arg
470
* lasso/id-wsf/profile_service.c: documented api
474
* lasso/id-wsf/discovery.c: documented all discovery functions used
475
by authentic / candle / unwind
479
* lasso/id-wsf/discovery.h: fixed add_requested_service_type
480
declaration to match code
484
* lasso/id-ff/provider.c: tries various key format before giving up
488
* lasso/id-ff/logout.c: build_response_msg called while there was
489
no connection will build a failure message.
493
* lasso/id-ff/logout.c: check for remote_provider_id
497
* lasso/id-wsf/discovery.c: reference correct identity header
501
* lasso/id-ff/logout.c, lasso/id-ff/session.c,
502
lasso/id-ff/sessionprivate.h: reinitialize assertion provider id
503
list only on reset_provider_id_index
507
* lasso/id-ff/logout.c: counter providers that do not support any
508
single logout; they are now skipped and a correct response is
509
nevertheless sent to the originating provider
513
* lasso/id-ff/session.c: correctly reset list before rebuilding it
517
* lasso/id-ff/logout.c: fixed comment
521
* lasso/id-wsf/identity.h: functions got moved from id-ff/ to
526
* lasso/id-ff/identityprivate.h: identity/resourceoffering
527
functions are now declared publically in id-wsf/
531
* lasso/id-ff/identity.c, lasso/id-wsf/Makefile.am, swig/Lasso.i:
532
expose identity/resourceoffering functions to developer
536
* lasso/id-wsf/profile_service_private.h: private profile service
541
* swig/Lasso-wsf.i: following-up on PersonalProfileService
542
cleaning; but I can't get getService to dynamically cast to that
547
* lasso/id-wsf/discovery.c: return LassoPersonalProfileService from
548
disco->getService if appropriate
552
* lasso/id-wsf/personal_profile_service.c,
553
lasso/id-wsf/personal_profile_service.h: cleaned up
554
PersonalProfileService
558
* lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h:
559
cleaning and documenting profile service
563
* lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
564
lasso/xml/dst_query_item.c, lasso/xml/dst_query_item.h,
565
swig/Lasso-wsf.i, swig/Lasso.i: fixed
566
lasso_profile_service_add_query_item so it accepts a item_id
567
parameter (since they are mandatory once there is more than one).
568
also allows init_query to specify item_id. this gives:
570
service = disco.getService()
571
service.initQuery('/pp:PP/pp:CommonName'), 'name')
572
service.addQueryItem('/pp:PP/pp:MsgContact'), 'email') soap_answer
573
= liberty.root.soap_call(service.msgUrl, service.msgBody) print
574
service.getAnswer('/pp:PP/pp:CommonName') print
575
service.getAnswer('/pp:PP/pp:MsgContact')
579
* lasso/id-wsf/discovery.c,
580
lasso/id-wsf/personal_profile_service.c,
581
lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
582
lasso/xml/dst_query.c, lasso/xml/dst_query_response.c,
583
lasso/xml/xml.c, swig/Lasso-wsf.i: API after the pp:query has been
586
server: service = lasso.ProfileService(server)
587
service.processQueryMsg(soap_message) identity =
588
get_identity_by_resource_id(service.request.resourceId)
589
service.resourceData = identity.get_pp_view()
590
service.buildResponseMsg() return service.msgBody
592
client: service.processQueryResponseMsg(soap_answer)
593
service.getAnswer() # or
594
service.getAnswer('/pp:PP/pp:CommonName')
598
* lasso/id-wsf/discovery.c,
599
lasso/id-wsf/personal_profile_service.c,
600
lasso/id-wsf/personal_profile_service.h,
601
lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
602
swig/Lasso-wsf.i, swig/Lasso.i: idwsf/pp on the attribute provider
605
service = lasso.ProfileService(server)
606
service.processQueryMsg(soap_message) identity =
607
get_from(service.request.resourceId) service.resourceData =
608
identity.convert_to_pp_xml()
612
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
613
lasso/id-wsf/personal_profile_service.c,
614
lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
615
swig/Lasso-wsf.i: first steps towards id-wsf/dst; something like
618
service = disco.getService()
619
service.initQuery('/pp:PP/pp:CommonName') service.buildRequestMsg()
620
-> service.msgUrl and .msgBody
624
* lasso/errors.c, lasso/errors.h, swig/Lasso.i: added
625
LASSO_ERROR_UNIMPLEMENTED error code
629
* lasso/xml/disco_query_response.c: disco:queryResponse missed
634
* debian/control, debian/rules: disabled c# in debian apckage
638
* lasso/errors.c, lasso/errors.h, lasso/id-ff/login.c,
639
swig/Lasso.i: return LASSO_LOGIN_ERROR_UNKNOWN_PRINCIPAL after
644
* lasso/id-ff/identity.c, lasso/id-ff/identityprivate.h,
645
lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
646
swig/Lasso-wsf.i: another id-wsf step, disco:query, looking up for
647
resource offerings in identity
651
* lasso/id-ff/logout.c: handle the case where logout request is
652
done while there are no session; that means direct call to
653
build_response_msg, creating a status: requestdenied.
657
* lasso/id-wsf/discovery.c: disco.processQueryMsg now sets
662
* lasso/id-ff/identity.c, lasso/id-wsf/discovery.c,
663
lasso/id-wsf/discovery.h, swig/Lasso-wsf.i: new remove entry;
664
correctly restore resource offerings from identity dump
668
* lasso/id-ff/identity.c, lasso/id-ff/identityprivate.h,
669
lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
670
swig/Lasso-wsf.i: renamed crunch to build since it doesn't look
671
like there is a need for an intermediate function for the moment.
672
process remove entries. create correct answer (when everything
673
goes ok, no support for failure yet)
677
* lasso/id-ff/identity.c, lasso/id-ff/identityprivate.h,
678
lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
679
swig/Lasso-wsf.i: lasso_discovery_crunch_modify_msg() (waiting for
680
another name) process disco modify insertEntries and adds them to
685
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
686
swig/Lasso-wsf.i: sets ResourceId (or EncryptedResourceId) in
687
LassoDiscovery object for easy usage
691
* lasso/id-wsf/discovery.c, lasso/id-wsf/discovery.h,
692
swig/Lasso-wsf.i: provide resource_offering as argument to not
693
diverge too much from existing work
697
* lasso/id-ff/provider.c, lasso/id-wsf/discovery.c,
698
lasso/id-wsf/discovery.h, swig/Lasso-wsf.i: first function towards
703
* lasso/id-ff/session.c: get_assertions() called with NULL will
704
return every assertions
708
* lasso/id-wsf/wsf_profile.c, lasso/id-wsf/wsf_profile.h,
709
swig/Lasso-wsf.i: added session and identity to LassoWsfProfile,
710
much like LassoProfile. Exposed them via SWIG inherited into
711
LassoDiscovery object
715
* lasso/xml/soap_binding_ext_timeout.c: Fixed setting of attribute,
716
int not NULL pointer.
720
* lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
721
swig/Lasso-wsf.i: Added getXmlNode() method to LassoProfileService
726
* lasso/id-wsf/personal_profile_service.c,
727
lasso/id-wsf/personal_profile_service.h: Added getEmail() method in
728
LassoPersonalProfile class.
732
* swig/Lasso-wsf.i: Fixed som warning about char signedness. Added
733
swig binding to getEmail() method in LassoPersonalProfile.
737
* lasso/id-wsf/Makefile.am,
738
lasso/id-wsf/personal_profile_service.c,
739
lasso/id-wsf/personal_profile_service.h,
740
lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
741
swig/Lasso-wsf.i: Added class LassoPersonalProfile. It allows to
742
load a xml doc representing PP data and to process query requests.
743
Need to complete WSC PP part.
747
* swig/Lasso.i: fixed typo in error constant name
751
* lasso/id-ff/federation.c, lasso/id-ff/identity.c,
752
lasso/id-ff/lecp.c, lasso/id-ff/login.c, lasso/id-ff/logout.c,
753
lasso/id-ff/name_registration.c, lasso/id-ff/profile.c,
754
lasso/id-ff/provider.c, lasso/id-ff/server.c,
755
lasso/id-ff/session.c, lasso/xml/disco_modify_response.c,
756
lasso/xml/disco_query_response.c, lasso/xml/dst_modify.c,
757
lasso/xml/dst_modify_response.c, lasso/xml/dst_query.c,
758
lasso/xml/dst_query_response.c,
759
lasso/xml/lib_federation_termination_notification.c,
760
lasso/xml/sa_sasl_response.c, lasso/xml/saml_assertion.c,
761
lasso/xml/samlp_response.c, lasso/xml/xml.c: char signedness for
762
gcc 4 (id-wsf part has not been done)
766
* lasso/xml/private.h: signedness change to lasso_query_sign (does
771
* lasso/id-wsf/profile_service.c, lasso/id-wsf/profile_service.h,
772
swig/Lasso-wsf.i: Now lasso_profile_service_add_data() returns a
773
LassoDstData object, so it is possible to set optional attributes.
777
* lasso/xml/tools.c: fixed signedness differences signaled by gcc
778
4.0 (lots of others yet to do)
782
* lasso/id-wsf/profile_service.c: Use
783
lasso_wsf_profile_process_soap_request_msg() to build soap response
788
* lasso/id-wsf/profile_service.h: Removed unused declared method
789
name : lasso_profile_service_build_request_msg().
793
* swig/Lasso-wsf.i: Fixed swig binding on ProfileService's
798
* lasso/id-ff/session.c: Fixed mistake about prototype of
799
lasso_session_dump().
803
* lasso/id-ff/identity.c, lasso/id-ff/session.c: Now
804
lasso_identity_new_from_dump() and lasso_session_new_from_dump()
805
return NULL if the root element name is wrong.
809
* python/Makefile.am: Removed now useless sed script (now done by
814
* swig/Lasso.i: In Swig, Use g_free instead of free for strings, to
815
avoid segfault when used in Java Windows.
819
* lasso/id-ff/defederation.c: checks identity exists before
824
* debian/changelog, debian/control, debian/rules: updated debian
825
packaging wrt new cli policy
829
* debian/rules: new mono packages no longer have this tool
833
* swig/Lasso.i: Give LassoServer access to
834
(LassoProvider)self->role
838
* ChangeLog: update ChangeLog for 0.6.2
3
842
* docs/reference/tmpl/login.sgml, docs/reference/tmpl/profile.sgml,