esaml
esaml copied to clipboard
arekinath
Erlang SAML library, SSO and SLO, with Cowboy integration
According to the SAML RFC when using redirect binding and encoding method DEFLATE there should be no signature in `SAMLRequest`. It should be put in the url parameter. [1] https://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf...
It hasn't been touched since 2015. As an Elixir developer working on implementing SAML in my web application, I have a vested interest in this library being maintained. I've noticed...
Cowboy 2 removes the http_start function. Cowboy 1.1.x has the http_start function. Let's use that instead.
Ya know, because ignoring things is fun, and easy, and there aren't any beam files in the repo right now.
Now the verify function will not break if we get a document back instead of an element Also subjectPublicKey sometimes does not include a tuple but directly the binary key,...
omit a default namespace if it is not visibly utilized; the specs suggest that we need to remove even a default namespace, if it is no visibly utilized on the...
- switch to erlang:timestamp() instead of erlang:now() due to deprecation warning - default to sha256 in xmerl_dsig:digest/1
- When generating an authn request, generate unique ID and store it for a certain time (5 minutes). - When validating an assertion response, verify that the ID in `InResponseTo`...
When processing an assertion, if notbefore element exists in the subject confirmation then validate the assertion with it.