Releases: IdentityPython/pysaml2
Releases · IdentityPython/pysaml2
Version 4.7.0
v4.7.0
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
79b9f30
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.7.0 (2019-04-02)
- Add support for MDQ signature verification
- Raise XmlsecError if xmlsec1 operations do not succeed
- Handle non standard response error status codes correctly
- Remove the hardcoded warning filter; pass -Wd to the python
interpreter to enable warnings - Remove the python-future dependency and only use six
- Minor python2 and python3 compatibility fixes
(unicode strings and example code) - Minor documentation fixes
Version 4.6.5
v4.6.5
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
65b136e
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.6.5 (2018-12-04)
- Fix for response status error case handling (introduced in v4.6.5)
- Added assurance-certification support
- Added entity-category-support support
Thanks @rectalogic @skanct
Version 4.6.4
e8d7414
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
Changelog
4.6.4 (2018-11-22)
- Make use of the sign argument to entity.Entity::apply_binding when binding is
HTTP-Redirect. Reminder: use authn_requests_signed configuration option
to indicate that Authentication Requests sent by the SP must be signed - Add want_assertions_or_response_signed configuration option - see
documentation about the introduced behaviour - Fix code for idp and sp examples
- Do not require assertion conditions
- Fix response encoding format
- Various code improvements for config, sigver, client_base, client,
ecp_client, ecp, s2repoze and entity modules - Support non-ascii attribute values for encryption and decryption
Thanks to @johanlundberg @skoranda @yuqing0708 @erakli
Version 4.6.3
v4.6.3
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
c5c7e2d
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
Do not map between attribute FriendlyName and attribute Name when no attributemaps are provided.
Version 4.6.2
v4.6.2
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
b0b1097
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.6.2 (2018-09-06)
Refactor AttributeValueBase::set_text method.
- set_text is doing too many things. At least the structure is a bit cleaner;
though, still complex. - set_text will set the type if no type has been set.
- set_text should not modify the type if it has already been set,
- set_text should not depend on the type's namespace.
- set_text should not interfere with the 'anyType' type.
- set_text will raise a ValueError if the value cannot be represented by the
type. - set_text will raise a ValueError if the type is unknown.
Version 4.6.1
v4.6.1
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
b8c84ec
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.6.1 (2018-08-29)
- Allow multiple AttributeStatement tags per Assertion
- Raise ValueError for invalid attribute type
- Make NameID element optional
- tests: fix test that depended on actual datetime
- build: Set minimum build-tool version through pyproject.toml
Version 4.6.0
v4.6.0
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
a17f233
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.6.0 (2018-08-07)
- Allow configuration and specification of id attribute name
- Retrieve SLO endpoint by the appropriate service type
- Deprecate AESCipher and aes.py module
- Add saml2.cryptography module
- Always generate a random IV for AES operations / Address CVE-2017-1000246
- Remove unused and broken RSA code
- Add more nameid-format definitions
- Remove invalid nameid-format
- Retrieve pacakge version from pkg_resources
- Fully replace Cryptodome library with cryptography
- Fix SSRF caused by URI attribute of Reference element
- Omit relay state in HTTP-POST response when empty
- Fix eidas natural person attribute URIs
- Add eidas attributes for legal person to saml2_uri attributemap
- Fix deprecation and resource warnings.
- Fix date format to show month, not minutes
- Fix typos
- s2repoze: Define session_info variable before use
- s2repoze: Correctly pull the SAMLRequest from Redirect LogoutRequests
- s2repoze: Include SCRIPT_NAME when checking whether current URL is a logout endpoint
- tests: Document and test all supported Python versions
- tests: Generate and upload coverage reports to codecov
- tests: Include dependencies information in test report
- tests: Run tests in verbose mode
- tests: Clean up unclosed files causing ResourceWarnings
- build: Set minimal version for cryptography package
- build: Set the correct version in the docs
- build: Update build manifest to include the correct files
- build: Switch from setup.py to setup.cfg
- docs: Add editorconfig file with basic rules
- docs: Update gitignore file
- docs: Remove downloads badge as it is no longer available
- docs: Update all pypi.python.org URLs to pypi.org
- docs: Updated license and renamed the file.
- examples: Do not request a signed response - backwards compatibility
- examples: Fix wsgiserver usage for example sp
- examples: Fix cherrypy.wsgiserver usage
4.5.0
Breaking release!
The SP by default now, requires the IdP to sign authentication responses. This is configurable through the want_response_signed option. To preserve the old behaviour, set want_response_signed to False.