All work
- Support for managing multiple prefixed cookiesJSSH-60Resolved issue: JSSH-60Scott Cantor
- Conditionally add setAttribute support to CookieManagerJSSH-59Scott Cantor
- Add servlet request validation for method and content typeJSSH-58Resolved issue: JSSH-58
- Implement HttpClient support for an overall request timeoutJSSH-56Brent Putman
- Clarify behavior of new HttpClient responseTimeout parameterJSSH-55Brent Putman
- Consider the output from plugin --verboseJSSH-57Resolved issue: JSSH-57
- HttpClientBuilder RequestConfig default for responseTimeout is non-sensicalJSSH-54Brent Putman
- Chaining filter does not auto-wire filters in orderJSSH-52Resolved issue: JSSH-52Scott Cantor
- Context initializer fails to honor external property search valuesJSSH-51Resolved issue: JSSH-51Scott Cantor
- Add thread-safe SchemaBuilder class akin to SAMLSchemaBuilderJSSH-49Scott Cantor
- Stop including CA:true in generated certificatesJSSH-50Resolved issue: JSSH-50
- Handle ID-less components in SpringServiceableComponentJSSH-48Rod Widdowson
- SpringServiceableComponent fails on ID-less componentJSSH-47Resolved issue: JSSH-47Rod Widdowson
- IdentifiedComponentManager should implement component interfacesJSSH-46Resolved issue: JSSH-46Scott Cantor
- Port Jetty 11 CGI servlet into a generic versionJSSH-45Scott Cantor
- Log inaccessible resource in exception messageJSSH-44Resolved issue: JSSH-44Scott Cantor
- DataSealer roundtrip encryption fails on Red Hat 9 OpenJDK in FIPS modeJSSH-42Resolved issue: JSSH-42Scott Cantor
- Add nullable factory bean supportJSSH-41Resolved issue: JSSH-41Scott Cantor
- CLI commands log missing algorithms from the AlgorithmRegistryJSSH-39
- net.shibboleth.shared.spring.config.StringBooleanToPredicateConverterTest Failure on Windows Latest JDK17JSSH-38Resolved issue: JSSH-38Rod Widdowson
- Console loggers for CLI tools should log to stderrJSSH-37Resolved issue: JSSH-37Scott Cantor
- Factory beans for some HttpClient-related classesJSSH-36Resolved issue: JSSH-36Scott Cantor
- Process nested beans in RelocatedBeanFactoryPostProcessorJSSH-34Resolved issue: JSSH-34Ian Young
- Review property placement behavior in context builderJSSH-33Resolved issue: JSSH-33Scott Cantor
- AttributeSupport value to QName conversion mishandles illegal valuesJSSH-31Resolved issue: JSSH-31Scott Cantor
- Consider removing the LazyMap/Set/ListJSSH-30
- Add a @NonnullBeforeTest annotationJSSH-29Resolved issue: JSSH-29Rod Widdowson
- Consider using IllegalStateException in component lifecycleJSSH-28
- Implement an ensureId method to help with nullability annotationJSSH-27Resolved issue: JSSH-27Rod Widdowson
- Documentation bug on AttributeSupport.getAttributeValueAsBoolean?JSSH-26Resolved issue: JSSH-26Rod Widdowson
- HTTPResource needs some rework to properly close responseJSSH-25Resolved issue: JSSH-25Rod Widdowson
- Removal of Guava Predicate/Function Spring convertersJSSH-23Resolved issue: JSSH-23Scott Cantor
- Consider returning null from Spring boolean convertersJSSH-22Resolved issue: JSSH-22Scott Cantor
- Spring is still falling through to remote access of XML filesJSSH-20Resolved issue: JSSH-20Scott Cantor
- Update SameSite filter to use the new Servlet 6.0 API for cookie attributesJSSH-19
- Consider adding spring support classes to shib-shared-testingJSSH-18Rod Widdowson
- Report path contains a backslashJSSH-17Resolved issue: JSSH-17Scott Cantor
- Update to Apache HttpClient 5.xJSSH-16Resolved issue: JSSH-16Brent Putman
- Consider use of Java "record" language featureJSSH-15
- Rework IdentifierGenerationStrategy usageJSSH-9Resolved issue: JSSH-9Scott Cantor
- Servlet filter that implements its own filter-mapping layerJSSH-8Resolved issue: JSSH-8Scott Cantor
- Allow NamespaceHandler base class to sub-delegate to additional handlersJSSH-4Resolved issue: JSSH-4Scott Cantor
- Replace use of Spring NestedIOException with IOExceptionJSSH-2Resolved issue: JSSH-2Ian Young
- Review implementation and tests for BasicParserPoolJSSH-11Scott Cantor
- ServiceableComponent should implement AutoCloseJSSH-5Resolved issue: JSSH-5Rod Widdowson
- Add unit tests for XML parser issuesJSSH-13Resolved issue: JSSH-13Scott Cantor
- Investigate allowing direct injection of HttpClientSecurityParameters into HttpResourceJSSH-3Resolved issue: JSSH-3Rod Widdowson
- Review use of Java version helper methods and deprecateJSSH-7Resolved issue: JSSH-7Rod Widdowson
- Add final to methods in component base classesJSSH-6Ian Young
- FunctionSupport#constant still references GuavaJSSH-12Resolved issue: JSSH-12
50 of 54
SAML metadata facility for OIDC RPs
Fixed
Basics
Logistics
Basics
Logistics
Description
Environment
None
is related to
Details
Details
Details
Created April 3, 2020 at 1:22 PM
Updated July 19, 2021 at 1:29 PM
Resolved March 22, 2021 at 2:11 PM
Activity
Henri MikkonenAugust 7, 2020 at 1:37 PM
Initial (not complete) version of the deployer documentation published in the GitHub wiki:
https://github.com/CSCfi/shibboleth-idp-oidc-extension/wiki/OIDCSAMLMetadata
TODO:
Resolver service documentation for client secret value resolution
Document the metadata-driven configuration options
Like for trusted SAML and CAS applications, we should support SAML metadata configuration for OIDC RPs too.
https://wiki.shibboleth.net/confluence/pages/viewpage.action?pageId=60784763