Shibboleth Developer's Meeting, 2023-08-18

Call Administrivia

09:00 Central US / 10:00 Eastern US / 15:00 UK / 17:00 FI

Calls are normally the 1st and 3rd Fridays of each month. Next call would be Friday 2023-09-01. Any reason to deviate from this?

60 to 90 minute call window.

Call Details

This week's call will use the Zoom system at GU, see ZoomGU for access info.

AGENDA

Add items for discussion here

Attendees:

Brent

• Completed most backlog of 5.x issues, notably:

  • OSJ-293: Consider strict mode to reject unexpected contentClosed

  • OSJ-307: Support Santuario's XMLParser interfaceClosed

  • OSJ-354: Suffix the PROTOCOL_MESSAGE category with .SAMLClosed

  • OSJ-372: Add support for newer signing and/or encryption algorithmsClosed

    • Although will have to update some things if/when Santuario changes to the new methodology of using only algorithm name of “RSASSA-PSS”. That probably won’t come out before our 5.0 release - unless we do the work and then get them to do a release quickly.

  • A couple of the HC ones are still open for some docs and final review.

• JSATTR-6: SAML AttributeQuery DataConnectorOpen

  • Probably won’t make 5.0, will likely re-schedule for 5.1. (Unfortunately missed awhile back b/c I didn’t have my Jira filter for 5.0 setup correctly after the project splits.)

  • Will start some work on it, maybe will be easier than it appears.

  • Assuming this is somewhat lower in priority now that Java SP is currently de-prioritized, right?

Daniel

• Cannot attend the call today

• cryptacular and ldaptive releases finished

• Need to finish configuration work for startTLSResponseTimeout and autoReconnect for both authn and resolver to wrap up IDP-1963: Update ldaptive to version 2 for IDP version 5Closed

Henri

• Cannot attend the call today

• JOIDC-161: Support unregistered clients at authz endpointClosed

  • The use of metadata policy -concept seems to be the way to go

  • This task hopefully finished next week

Ian

• IdP: Dependencies upon dependencies. Most important ones now resolved, I think.

• Java 21 is at Release Candidate; GA is 2023-09-19.

• Spring Framework 6.0.12 expected 2023-09-14.

• Spring Framework 6.1.0-RC1 also expected 2023-09-14.

John

Absent

Marvin

• IDP-1473: Review and possibly remove CAS ticket dependency on IdPSessionClosed

  • Commit hopefully by next week.

Phil

• Not soo much.

• JOIDCRP-44: Null Handling TaskClosed

  • Took a bit of time. Mucked a test, and fixed it. Tested against the cert suite.

  • Will look at Duo.

• JOIDCRP-42: Unit tests fails on windowsClosed

  • The issue was how InetAddress.getByName("localhost").getCanonicalHostName(); returned an IP address on Windows but DNS name on Mac/Linux. This affected the SAN in the certificate the MockServer was using, the IP address version did not pass hostname verification.

• Will get back to RP features.

Rod

• IdP Beta

Scott

• Beta and docs

Tom

Other