aboutsummaryrefslogtreecommitdiff
path: root/id/server/modules
AgeCommit message (Collapse)AuthorFilesLines
2017-05-03Log full MOA-SP signature-verification request into MOA-ID log if LogLevel ↵Thomas Lenz1-2/+3
is trace
2017-03-28update MOA eIDAS-Engine to reload eIDAS metadata if request or response ↵Thomas Lenz6-26/+160
validation are not success at first check. This update makes a key role-over easier for signing and encryption.
2017-02-23add some javadoc informationThomas Lenz1-5/+12
2017-02-23update eIDAS SP metadata, because SP needs persistent identifiers onlyThomas Lenz1-5/+12
2017-02-22Refector eIDAS attribute generation do a dynamic way similar to the PVP ↵Thomas Lenz15-183/+589
attribute builder concept The eIDAS attribute list in eIDAS metadata that contains currently supported attributes is also generated dynamical
2017-02-21add support of additional eIDAS attributes by using a simple configuration fileThomas Lenz4-27/+77
2017-02-14change log level of one log message to traceeIDAS_node_implementationThomas Lenz1-1/+1
2017-02-10update eIDAS specific revisionslog entriesThomas Lenz3-4/+4
2017-02-09add additional validation steps in eIDAS message processingThomas Lenz5-25/+272
2017-02-08if OA requests no eIDAS attributes than request PersonalIdentifier as minimumThomas Lenz1-1/+11
2017-02-08update eIDAS assertion generation to generate an error message if attribute ↵Thomas Lenz1-2/+8
that is marked as required is not available
2017-02-08update eIDAS node configuration to allow more then on configuration for the ↵Thomas Lenz1-38/+0
same country code. Country codes can be extended by a suffix like NL and NL-Test. Both generates a Authn. request for NL but there are two entries in citizen country selector and maybe two different service URLs
2017-02-07update eIDAS SAML-engine to support ↵Thomas Lenz4-10/+503
http://www.w3.org/2007/05/xmldsig-more#sha256-rsa-MGF1 and http://www.w3.org/2007/05/xmldsig-more#sha512-rsa-MGF1 signature schemes
2017-02-07fix some bugs in eIDAS SAML-engine metadata generatorThomas Lenz1-3/+6
2017-02-03prohibit chunked transfer encoding in eIDAS metadata responseThomas Lenz1-6/+11
2017-02-03fix wrong html content-type value in eIDAS metadata responseThomas Lenz1-1/+2
2017-02-01fix problem with eIDAS response ContentType encodingThomas Lenz3-7/+7
2017-01-31add missing third party libThomas Lenz1-0/+6
2017-01-31fix problem with selection of authentication process and eIDAS authenticationThomas Lenz1-2/+3
2017-01-31set requested default LoA to highThomas Lenz1-3/+8
2017-01-31fix double signing of eIDAS metadata informationThomas Lenz1-6/+18
2017-01-30remove unused importsThomas Lenz1-7/+0
2017-01-30enable encrypt of eIDAS assertion as defaultThomas Lenz1-2/+6
2017-01-27add MOA specific eIDAS engine.Thomas Lenz2-0/+92
2017-01-27change to eIDAS engine 1.2.0Thomas Lenz1-5/+5
2016-12-09fix bug in OpenID protocol implementation that generates a wrong encoded ↵Thomas Lenz1-3/+6
error response
2016-11-24fix check if ELGA mandate-service module is configuredThomas Lenz1-2/+4
2016-11-22fix bug in eIDAS SAML-engine that does not allow SIGNATURE_RSA_SHAxxx_MGF1 ↵Thomas Lenz3-4/+161
algorithms for XML signatures
2016-11-18add first parts to support Redirect-Binding for eIDAS Auth. interfaceThomas Lenz1-45/+133
2016-11-18update SSO session-transfer moduleThomas Lenz1-13/+2
2016-11-16fix some more bugs in eIDAS SAML-engineThomas Lenz1-8/+39
* different problems with SAML metadata generation
2016-11-16fix bug in eIDAS SAML-engine:Thomas Lenz1-1/+9
generate metadata extensions element from wrong schema definition
2016-11-04add hostname validation to httpclient 3.1, which is assumed by openSAML 2.xThomas Lenz1-1/+4
2016-11-04update Http client for MIS communicationThomas Lenz5-203/+68
2016-10-25fix another problem in session databaseThomas Lenz32-168/+139
2016-10-24remove MOA-ID specific certStore directory.Thomas Lenz1-1/+0
From now, MOA-ID always use the MOA-SPSS certStore directory for chain building
2016-10-21add log messages in clean-up processThomas Lenz1-0/+2
2016-10-21add functionality to support more than one ELGA mandate-serviceThomas Lenz5-67/+144
2016-10-21fix possible multi-threading problem with database connectionsThomas Lenz2-46/+16
2016-10-21update SSL certificate revocation-checking method-order if the IAIK_PKI ↵Thomas Lenz1-8/+12
module is used
2016-10-07add additional redirect in elga mandate-service selection-process to get out ↵Thomas Lenz5-9/+93
from BKU communication switch version of elga-mandate-module to 1.1
2016-09-30fix possible IndexOutOfBoundExceptionThomas Lenz1-1/+3
2016-09-30refactor http servlet response processing to prohibit 'chunked' transfer ↵Thomas Lenz11-49/+57
encoding
2016-09-20update eIDAS module to load highest possible LoA from configThomas Lenz2-1/+6
2016-09-20fix bug in eIDAS SAML-engine to allow 2 minutes time jitter in ↵Thomas Lenz5-3/+151
Assertion->Conditions element
2016-08-16add SSO/SLO container functionality to eIDAS protocol impl. to support SSO ↵Thomas Lenz1-6/+51
functionality
2016-08-16add eIDAS response LoA validationThomas Lenz1-4/+24
2016-08-16change STORK QAA to eIDAS LoAThomas Lenz4-24/+21
2016-08-16update eIDAS attribute generation from AuthDataThomas Lenz2-22/+110
2016-08-12workaround for eIDAS metadata signature validation during reload operation.Thomas Lenz1-3/+4
(Because metadata isSigned() flag in MOASPMetadataSignatureFilter.class is always false, if already loaded metadata are checked)