summaryrefslogtreecommitdiff
Commit message (Expand)AuthorAgeFilesLines
* Merge branch 'master' into users/lhoward/saml2lhoward/saml2Luke Howard2011-04-117-121/+174
* cleanupLuke Howard2011-04-111-2/+0
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-116-26/+60
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-073-193/+256
* set xs:string/xs:base64Binary depending on LDAP syntaxLuke Howard2011-04-061-8/+27
* correctly format radius config continuation linesLuke Howard2011-04-061-1/+1
* Revert "use global server_creds for impersonator cred handle"Luke Howard2011-04-061-8/+22
* fix merge errorLuke Howard2011-04-061-1/+0
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-065-18/+49
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-0424-473/+826
* use global server_creds for impersonator cred handleLuke Howard2011-04-031-22/+8
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-035-16/+24
* allow zero-valued attributesLuke Howard2011-04-031-1/+1
* remove trailing whitespaceLuke Howard2011-04-033-7/+7
* fix regression: 't log "Accepted" message to stdoutLuke Howard2011-04-031-1/+1
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-039-344/+380
* cleanupLuke Howard2011-04-031-10/+10
* parameterize constrained deleg target nameLuke Howard2011-04-031-14/+54
* Add an option to saml_sign for generating RADIUS AAA configurationLuke Howard2011-04-031-1/+40
* If we failed to verify the assertion, and we have informationLuke Howard2011-04-031-3/+9
* add PADL copyrights, this work is not sponsored by MITLuke Howard2011-04-034-1/+126
* cleanupLuke Howard2011-04-031-2/+1
* relax subject/authtime confirmationLuke Howard2011-04-021-6/+20
* add saml_sign appLuke Howard2011-04-025-79/+305
* fixes for constrained delegationLuke Howard2011-04-021-16/+51
* refactor krb5 plugin to use GSS_C_ATTR_SAML_ASSERTIONLuke Howard2011-04-023-12/+13
* add GSS_C_ATTR_SAML_ASSERTION constantLuke Howard2011-04-024-6/+14
* pass GSS_C_NT_ANONYMOUS for anonymous name typeLuke Howard2011-04-021-6/+2
* allow empty names when importing GSS_C_NT_ANONYMOUSLuke Howard2011-04-021-4/+11
* add some commentsLuke Howard2011-04-021-0/+6
* Don't include unverified assertions in TGTs, because weLuke Howard2011-04-021-0/+25
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-028-2/+175
* Determine which authdata sources to interrogate based on theLuke Howard2011-04-021-3/+18
* Revert "merge old SAML branch GSS stuff"Luke Howard2011-04-029-182/+58
* always confirm anonymous principalsLuke Howard2011-04-023-30/+44
* add anonymous S4U test to gss-serverLuke Howard2011-04-021-31/+77
* When doing S4U2Self for the anon principal, use the server realmLuke Howard2011-04-021-4/+12
* typo fixLuke Howard2011-04-021-1/+1
* Some work on validating third-party signed assertionsLuke Howard2011-04-026-58/+307
* Merge branch 'master' into users/lhoward/saml2Luke Howard2011-04-0213-327/+547
* Support for transiting attributes between mechanismsLuke Howard2011-04-011-2/+68
* add Kerberos S4U test to gss-serverLuke Howard2011-04-011-5/+300
* only reset greeting if provided attribute is urn:greet:greetingLuke Howard2011-04-011-0/+3
* some fixes for SAML protocol transitionLuke Howard2011-04-011-26/+40
* verify desired and actual mech OIDs are equal before trying gss_duplicate_nameLuke Howard2011-04-011-2/+7
* test SAML S4U impersonationLuke Howard2011-04-011-5/+11
* Don't treat SAML authdata as KDC-issueda in KDCLuke Howard2011-04-011-1/+0
* allow unsigned assertionsLuke Howard2011-04-011-4/+4
* allow assertion to be NULLLuke Howard2011-04-011-9/+16
* s4u2proxy_set_attribute should only return EPERM for its own attributeLuke Howard2011-04-011-8/+2
View Lorry Controller Status