All work
- Investigate use of metric removal to limit heap usage in loop detectionIDP-2268Resolved issue: IDP-2268Scott Cantor
- Deprecation warning is incorrect in profile configIDP-2208Resolved issue: IDP-2208Scott Cantor
- ECP profile configuration inheritance is wrongIDP-2203Resolved issue: IDP-2203Scott Cantor
- Warning interceptor flow should not delete cookie for dynamic conditionsIDP-2189Resolved issue: IDP-2189Scott Cantor
- Admin flow to report on config settingsIDP-2126Resolved issue: IDP-2126Scott Cantor
- Add metrics for request processingIDP-2118Resolved issue: IDP-2118Scott Cantor
- Implement new SAML profile settingsIDP-2076Resolved issue: IDP-2076Scott Cantor
- Support auto-throwing EntityResolver in default ParserPoolIDP-2050Resolved issue: IDP-2050Scott Cantor
- Finalize deprecation of HttpServletXXX proxiesIDP-2042Resolved issue: IDP-2042Scott Cantor
- SecurityConfiguration on AbstractProfileConfiguration is SAML-specificIDP-2020Resolved issue: IDP-2020Scott Cantor
- Add step during session validation to check session revocation listIDP-1980Resolved issue: IDP-1980Scott Cantor
- Post-authn intercepts are bypassed if attribute resolution is disabledIDP-1921Resolved issue: IDP-1921Scott Cantor
- Bug with Java 17 due to WarningInterceptIDP-1901Resolved issue: IDP-1901Scott Cantor
- No attribute context available in profile request context for authenContextTranslationStrategyEx hookIDP-1867Resolved issue: IDP-1867Scott Cantor
- ScopedAttributePredicateIDP-1822Resolved issue: IDP-1822Scott Cantor
- Looping detectionIDP-1686Resolved issue: IDP-1686Scott Cantor
- Example date/time format in expiring password flow is invalidIDP-1670Resolved issue: IDP-1670Scott Cantor
- Conditionalize the Stuff needed to support nashorn.IDP-1661Resolved issue: IDP-1661Rod Widdowson
- Generalize the expiring-password interceptor into a multi-purpose flowIDP-1618Resolved issue: IDP-1618Scott Cantor
- Tag-driven security configuration not workingIDP-1570Resolved issue: IDP-1570Scott Cantor
- Changes to profile and algorithm defaultsIDP-1526Resolved issue: IDP-1526Tom Zeller
- Need a filter to append SameSite to cookiesIDP-1476Resolved issue: IDP-1476Scott Cantor
- External intercept flowIDP-1469Resolved issue: IDP-1469Scott Cantor
- Provide way to set forceAuthn on an RP from the IdP sideIDP-1318Resolved issue: IDP-1318Scott Cantor
- Interceptor for controlled impersonation to servicesIDP-1211Resolved issue: IDP-1211Scott Cantor
- Add activation condition to profile configsIDP-1160Resolved issue: IDP-1160Scott Cantor
- Enhance context-check interceptor to support multiple events.IDP-1153Resolved issue: IDP-1153Scott Cantor
- ProfileConfigurations should carry activation conditionIDP-1144Resolved issue: IDP-1144Scott Cantor
- Unconstrained flow transitions considered harmful.IDP-1133Resolved issue: IDP-1133Scott Cantor
- Implement regex-enabled attribute matching predicateIDP-1062Resolved issue: IDP-1062Scott Cantor
- Profile setting to disallow RequestedAuthnContext in requestsIDP-1049Resolved issue: IDP-1049Scott Cantor
- Document dynamic profile configuration featureIDP-976Resolved issue: IDP-976Scott Cantor
- logout.vm Does Not Correctly Render $request VariableIDP-956Resolved issue: IDP-956Marvin Addison
- Dynamic determination of profile and relying party configuration settingsIDP-948Resolved issue: IDP-948Scott Cantor
- Include incoming CAS request parameters in login flow context(s)IDP-911Resolved issue: IDP-911Marvin Addison
- Currently not possible to adjust profile locations without modifying system filesIDP-909Resolved issue: IDP-909Scott Cantor
- Support accessing context tree from non-SWF contextsIDP-789Resolved issue: IDP-789Marvin Addison
- Support/Document Programmatic Authorization in the IDP per entityIdIDP-784Resolved issue: IDP-784Scott Cantor
- Devise new strategy for the delegation code to know its own Liberty SSOS endpointIDP-678Resolved issue: IDP-678Brent Putman
- Port delegation "user authentication" of request based on presentation of SAML 2 Assertion WS-Security tokenIDP-677Resolved issue: IDP-677Brent Putman
- Port delegation configuration and policy control componentsIDP-676Resolved issue: IDP-676Brent Putman
- Port delegation context and message handling codeIDP-675Resolved issue: IDP-675Brent Putman
- Create Action(s) and supporting code to handle inbound Liberty ID-WSF SSOS requestsIDP-674Resolved issue: IDP-674Brent Putman
- Attribute resolution errors are hardwired to fail the profile flowsIDP-578Resolved issue: IDP-578Scott Cantor
- Improve IdP SAML Logout default handling when client-side sessions are in useIDP-576Resolved issue: IDP-576Scott Cantor
- Relying Party / Profile Config DocumentationIDP-551Resolved issue: IDP-551Scott Cantor
- Handle support for non-browser profiles in intercept flowsIDP-519Resolved issue: IDP-519Tom Zeller
- Endpoint resolution action does not handle Anonymous profile requestsIDP-470Resolved issue: IDP-470Scott Cantor
- Add profile actions to set MessageChannelSecurityContext and fix up related codeIDP-416Resolved issue: IDP-416Scott Cantor
- Implement machinery for session key generationIDP-415Resolved issue: IDP-415Scott Cantor
50 of 113
Investigate use of metric removal to limit heap usage in loop detection
Won't Do
Basics
Logistics
Basics
Logistics
Description
Environment
None
is duplicated by
Details
Details
Details
Created March 15, 2024 at 11:06 AM
Updated March 15, 2024 at 4:44 PM
Resolved March 15, 2024 at 4:44 PM
Activity
Scott CantorMarch 15, 2024 at 4:43 PM
Definitely not important to backport, I think I’m probably the only one using this loop detection stuff, but either way it’s not essential to port this.
This skirts dangerously close to bnew function, the changes look small but the case notes ( ) are scary.
Commits are (in java-shib-profile)