Issues

Select view

Select search mode

Bug
ChainingMetadataProvider.setProviders() method doesn't remove Observers from the current providers
Unassigned
Unidentified Legacy Account
Major
Unresolved
Dec 19, 2016
Jun 24, 2021
Bug
Failed to verify signature using KeyInfo-derived
Unassigned
Сергей Иванов
Major
Invalid
Jun 29, 2016
Jun 30, 2016
Bug
Small memory leak in ChainingMetadataProvider
Unassigned
bananetomate@hotmail.com
Minor
Won't Fix
Feb 8, 2016
Feb 8, 2016
Bug
Too-narrow cast in SingleLogoutProfileImpl hinders implementing Identity Provider profile
Unassigned
Denis Treskunov
Trivial
Invalid
Dec 18, 2015
Jan 9, 2016
Bug
BaseSAML2MessageDecoder tries to get SAML1 role descriptor
Unassigned
Denis Treskunov
Minor
Fixed
Dec 18, 2015
Jan 9, 2016
Improvement
durations in log messages should be given in ISO format, not milliseconds
Unassigned
Ian Young
Minor
Fixed
Oct 12, 2015
Jan 9, 2016
Bug
Metadata reload errors logged on DEBUG only
Unassigned
Scott Cantor
Critical
Fixed
Sep 14, 2015
Jun 22, 2021
Bug
Resource required to be non-empty in AuthzDecisionStatement
Unassigned
Jamin Hitchcock
Major
Fixed
Jul 2, 2015
Jan 15, 2016
Improvement
Allow reloading metadata providers to accept a null Timer
Unassigned
Brent Putman
Major
Completed
Feb 25, 2015
Feb 25, 2015
Bug
Switch to use new XML Tooling HostnameVerifier impl
Unassigned
Brent Putman
Major
Fixed
Sep 17, 2014
Sep 17, 2014
Improvement
CLONE - On MetadataProviderCredentialResolver, expose the MetadataProvider used to construct the resolver
Unassigned
s4297514@uq.edu.au
Minor
Invalid
May 27, 2014
Jul 25, 2014
Bug
Maven Pom Files Seem to have Incorrect Values
Unassigned
Nathan Hook
Major
Invalid
May 6, 2014
Jul 25, 2014
Bug
Misspelled method name in SAMLMDCredentialContext, getEncryptionMethod vs getEncryptionMethods
Unassigned
Brent Putman
Minor
Fixed
Mar 21, 2014
Mar 21, 2014
Bug
Socket factory is not respected for meta data provider
Unassigned
fhanik
Major
Won't Fix
Jan 6, 2014
Aug 8, 2014
Bug
Superfluous/wrong type constants in SAML 1 and SAML 2 interfaces
Unassigned
Scott Cantor
Trivial
Fixed
Jan 5, 2014
Feb 20, 2014
Bug
Misspelled error constant in SAML 1 StatusCode interface
Unassigned
Scott Cantor
Trivial
Fixed
Jan 5, 2014
Mar 21, 2014
Bug
Destination parsing in BaseSAMLMessageDecoder
Unassigned
Mark Stenpeck
Minor
Won't Fix
Dec 29, 2013
Jan 29, 2014
Task
OpenSAML v2.6.1 release process
Unassigned
Brent Putman
Major
Completed
Dec 18, 2013
Aug 8, 2014
Bug
AbstractReloadingMetadataProvider refresh() is public, should be synchronized for concurrent access
Unassigned
Brent Putman
Minor
Fixed
Nov 1, 2013
Nov 1, 2013
Bug
AbstractMetadataProvider is incorrectly performing an unnecessary validity check and erroneous TRACE message
Unassigned
Brent Putman
Minor
Fixed
Oct 30, 2013
Oct 30, 2013
Bug
Failed to pass veracode due Use of a Broken or Risky Cryptographic Algorithm (CWE ID 327)
Unassigned
Anton Gusev
Major
Won't Fix
Oct 15, 2013
Oct 23, 2013
Bug
Failed to pass veracode due Use of a Broken or Risky Cryptographic Algorithm (CWE ID 327)
Unassigned
Anton Gusev
Major
Won't Fix
Oct 15, 2013
Oct 23, 2013
Bug
Opensaml1 failed to pass veracode due Use of Wrong Operator in String Comparison (CWE ID 597)
Unassigned
Anton Gusev
Major
Fixed
Oct 15, 2013
Oct 23, 2013
Bug
Scoping class has incorrect xsi:type
Unassigned
David Illsley
Minor
Fixed
Aug 15, 2013
Aug 15, 2013
Bug
AbstractSAMLObject should not override equals but not hashCode
Unassigned
David Illsley
Minor
Fixed
Apr 15, 2013
Apr 17, 2013
Task
Add tests for fail-fast in HTTPMetadataProvider
Unassigned
Brent Putman
Minor
Completed
Mar 22, 2013
Mar 22, 2013
Bug
FileBackedHTTPMetadataProvider constructor doesn't behave correctly vis-a-vis fail-fast setting if the backing file path has problems
Unassigned
Brent Putman
Major
Fixed
Mar 20, 2013
Mar 22, 2013
Bug
FilesystemMetadataProvider fetchMetadata() does not work correctly if file last modified time is older than getLastRefresh() in some cases
Unassigned
Brent Putman
Major
Fixed
Mar 20, 2013
Mar 22, 2013
Bug
Setting failFastInitialization=false has no effect
Unassigned
Yaowen Tu
Minor
Fixed
Mar 20, 2013
Mar 20, 2013
Bug
MetadataProvider doesn't report error during refresh if the metadata file doesn't exist any more
Unassigned
Yaowen Tu
Minor
Fixed
Mar 20, 2013
Mar 20, 2013
New Feature
Head/body template injection for SAML binding templates
Unassigned
Scott Cantor
Minor
Fixed
Mar 8, 2013
Mar 8, 2013
Bug
SAML1 and 2 base message encoders have incorrect selection logic in getEndpointURL()
Unassigned
Brent Putman
Major
Fixed
Jan 25, 2013
Apr 17, 2013
Improvement
Reduce memory usage of unit tests
Unassigned
Brent Putman
Minor
Fixed
Jan 22, 2013
Jan 23, 2013
Bug
SAML SOAP encoders should use the supplied outbound SOAP Envelope from the message context, if it exists
Unassigned
Brent Putman
Minor
Fixed
Jan 11, 2013
Jan 11, 2013
Bug
Configuration files for XMLObject providers often missing Type registrations
Unassigned
Scott Cantor
Major
Fixed
Nov 8, 2012
Nov 12, 2012
New Feature
XML providers for Async Logout extensions
Unassigned
Scott Cantor
Minor
Fixed
Nov 7, 2012
Apr 5, 2013
Improvement
On MetadataProviderCredentialResolver, expose the MetadataProvider used to construct the resolver
Unassigned
Brent Putman
Minor
Fixed
Sep 26, 2012
May 27, 2014
Improvement
Use system property-based override for our custom ESAPI config rather than ESAPI locator class call
Unassigned
Brent Putman
Minor
Fixed
Aug 15, 2012
Nov 5, 2012
Improvement
org.opensaml.ESAPISecurityConfig should use singleton pattern like the default ESAPI reference class
Unassigned
Brent Putman
Minor
Fixed
Aug 15, 2012
Nov 5, 2012
Improvement
Make the implementation of custom bootstrap code easier, without relying on private data from DefaultBootstrap
Unassigned
Brent Putman
Minor
Fixed
Aug 15, 2012
Nov 5, 2012
Bug
org.opensaml.saml2.metadata.provider.SignatureValidationFilter => java.lang.UnsupportedOperationException
Unassigned
Olivier FRANCO
Major
Fixed
Jul 17, 2012
Nov 5, 2012
Bug
Merge forward bugs found in testing XACML code for OS3
Unassigned
Rod Widdowson
Major
Fixed
Jul 3, 2012
Apr 9, 2013
Task
Backport fixes from OpenSAML3
Unassigned
Rod Widdowson
Major
Fixed
Jun 19, 2012
Nov 5, 2012
Bug
RoleDescriptorImpl isValid check enforces that validUntil date is before now, instead of in the future
Unassigned
Phil Varner
Major
Fixed
May 18, 2012
Aug 10, 2012
Bug
DefaultBootstrap is unnecessarily calling Velocity singleton initialization
Unassigned
Brent Putman
Minor
Fixed
May 2, 2012
Nov 5, 2012
Bug
Velocity initialization code uses an invalid key for the configuration properties set
Unassigned
Brent Putman
Minor
Fixed
May 1, 2012
Nov 5, 2012
Bug
Defaultbootstrap does not initialize the providers from the WS-Trust and WS-Policy schemas in openws
Unassigned
Brent Putman
Minor
Fixed
Mar 15, 2012
Nov 5, 2012
Improvement
It would be nice if ESAPI.encodeForURL could be made to work
Unassigned
Rod Widdowson
Trivial
Fixed
Mar 14, 2012
Nov 5, 2012
Bug
AbstractReloadingMetadataProvider code for maxRefreshDelay doesn't match documentation
Unassigned
Rod Widdowson
Minor
Fixed
Mar 12, 2012
Nov 7, 2012
Task
Clean up maven assembly description
Unassigned
ChadC
Minor
Fixed
Feb 26, 2012
Feb 26, 2012
1-50 of 213