06 Jul, 2014

1 commit


01 Jul, 2014

1 commit


26 Jun, 2014

1 commit


25 Jun, 2014

1 commit

  • DAS now supports goto URL validation.
    Changes:
    * The valid goto URL domain setting has been moved to a new service called
    validationService, the new property name is
    "openam-auth-valid-goto-resources"
    * A new delegation policy has been created that allows agent accounts to
    read the validationService settings
    * The necessary upgrade step has been implemented that should migrate
    existing valid goto domains to the new service (also removes the old ones),
    which also ensures that the new delegation policy is added to the system.
    * The Goto URL validation logic has been extracted out to a separate class
    called GotoUrlValidator, which is now can be used from both openam-core
    and openam-federation-library (for Relaystate evaluations).
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@9424 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

04 Jun, 2014

3 commits


13 May, 2014

3 commits


29 Apr, 2014

2 commits


17 Apr, 2014

1 commit


15 Apr, 2014

1 commit


14 Apr, 2014

3 commits


02 Apr, 2014

1 commit

  • AttributeQueryUtil now utilizes the configured SP attribute mapper to map
    received attributes the same way as they would come as part of an
    assertion.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@8561 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

27 Mar, 2014

1 commit


23 Mar, 2014

1 commit


02 Mar, 2014

1 commit

  • Adding extra emptiness check to ensure we don't try to retrieve
    affiliationDescriptor for "".
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@8269 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

28 Feb, 2014

1 commit


26 Feb, 2014

1 commit


23 Feb, 2014

1 commit


20 Feb, 2014

2 commits


04 Feb, 2014

2 commits


07 Jan, 2014

2 commits


14 Dec, 2013

1 commit

  • Modified the NameIdentifierMapper interface so it now receives the
    NameIDFormat value directly instead of using a session property as
    transport.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@7573 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

06 Dec, 2013

1 commit


04 Dec, 2013

4 commits


21 Nov, 2013

1 commit


20 Nov, 2013

1 commit

  • For SAML logins the LoginServlet should detect the authentication session
    from the query string rather than using any existing cookies, that way we
    can make sure that the SAML authentication flow will stay on the server
    that stores the necessary request data to finish the SAML.
    
    git-svn-id: https://svn.forgerock.org/openam/trunk@7351 0f4defcf-c51a-4c67-9f44-6fb5eba73c5d
    peter.major
     

19 Nov, 2013

1 commit


13 Nov, 2013

1 commit