lp://staging/~roadmr/django-saml2-idp/fix-digest-signature-xml-identifiers-algorithm
- Get this branch:
- bzr branch lp://staging/~roadmr/django-saml2-idp/fix-digest-signature-xml-identifiers-algorithm
Branch merges
- Guillermo Gonzalez: Approve
-
Diff: 309 lines (+168/-21)6 files modifiedidptest/keys/sample/sample-public-key.pub (+4/-0)
idptest/saml2idp/tests/signing.py (+116/-4)
idptest/saml2idp/xml_signing.py (+41/-13)
idptest/saml2idp/xml_templates.py (+2/-2)
requirements.txt (+4/-1)
setup.py (+1/-1)
Branch information
Recent revisions
- 84. By Daniel Manrique
-
Refactor / fix substitution of xml algorithm identifiers.
XMl signing and digest algorithm identifiers are fully namespaced with URLs, not just
tacking on the algorithm name at the end of a fixed URL. This fixes that and
updates templating a bit. - 82. By Daniel Manrique
-
Add sample public key for tests.
Extracted from the existing certificate, should mimic what peers do to
verify our signatures.openssl x509 -in sample-
certificate. pem -pubkey -noout > sample- public- key.pub - 81. By Daniel Manrique
-
Test refactoring to verify signatures.
- Superclass method to verify signature by extracting signedinfo and
signaturevalue from the final signature xml and verifying with m2crypto.
- bolted this on to existing TestSigning class.
- Added failing test to TestSha256Signing class, with steps to make the
actual code work \o/ - 80. By Daniel Manrique
-
Only BS4 can use the 'xml' parser which is case sensitive and doesn't screw SignedInfo tags
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/django-saml2-idp