guanxi release 2

Wed, Jan 31, 2007

I’ve now made the latest Guanxi release, codename Lomond

IdP

  • v1.4.0
  • Updated org.guanxi.idp.AttributeAuthority::doPost() to parse attribute query from a String instead of the InputStream to get round XMLBeans parsing bug
  • Added org.guanxi.idp.authenticators.FlatFileAuthenticator and org.guanxi.idp.attributors.FlatFileAttributor
  • Added WEB-INF/guanxi_idp/config/ff.xml for the flat file modules
  • Updated WEB-INF/guanxi_idp/config/attributors/attributors.xml, added FlatFileAttributor as default.
  • Updated WEB-INF/guanxi_idp/config/attributors/BodingtonAttributor.xml. Root node changed from plugin to BodingtonAttributor. Removed all nodes except urn and shib_urn.
  • Updated WEB-INF/guanxi_idp/config/authenticators/authenticators.xml, added FlatFileAuthenticator as default.
  • Deleted WEB-INF/guanxi_idp/config/xsl.
  • Added WEB-INF/guanxi_idp/config/shared. This contains config files shared between authenticators and attributors. It also contains shared system configs such as the ARP and attribute map file.
  • Removed WEB-INF/guanxi_idp/config/attributors/BodingtonAttributorARP.xml, LDAPAttributor.xml, LDAPAttributorARP.xml, LDAPAttributorMap.xml. These are all replaced by system and shared files in config/shared.
  • Removed WEB-INF/guanxi_idp/config/authenticators/BodingtonAuthenticator.xml (not used now) and LDAPAuthenticator.xml which is replaced by config/shared/ldap.xml.
  • Removed WEB-INF/guanxi_idp/config/cookies/BodingtonCookieHandler.xml as it’s not used now.
  • Updated org.guanxi.idp.attributors.BodingtonAttributor to use system ARP and XMLBeans for config and attribute gathering.
  • Updated org.guanxi.idp.attributors.GuanxiAttrFarm::getAttributes() to be namespace aware as the attributors are now producing namespace aware xml
  • Updated org.guanxi.idp.attributors.LDAPAttributor to use system ARP and map files and XMLBeans for config and attribute gathering. Updated for latest version of LDAPConnection.bind(int, String, byte[]).
  • Updated org.guanxi.idp.authcookiehandlers.BodingtonCookieHandler, config file too much hassle, cookie name now hard coded as it won’t change before Tetra comes out!
  • Updated org.guanxi.idp.authenticators.BodingtonAuthenticator as config file too much hassle, authenticator key now hard coded as it won’t change before Tetra comes out!
  • Updated org.guanxi.idp.authenticators.LDAPAuthenticator to use XMLBeans for config and the shared ldap.xml in config/shared. Updated for latest version of LDAPConnection.bind(int, String, byte[]).
  • Updated org.guanxi.idp.authcookiehandlers.GuanxiAuthCookieHandlerFarm, fixed bug where cookie names weren’t registered properly
  • Updated org.guanxi.idp.authcookiehandlers.BodingtonCookieHandler::authenticate, added 3 second delay before using Bodington session to solve NPE while Bodington does it’s internal stuff.
  • Updated org.guanxi.idp.attributors.GuanxiAttrFarm to use XMLBeans for it’s config.
  • Updated org.guanxi.idp.authenticators.GuanxiAuthFarm to use XMLBeans for it’s config.
  • Updated org.guanxi.idp.authcookiehandlers.GuanxiAuthCookieHandlerFarm to use XMLBeans for it’s config.
  • Updated build.xml to remove unused jars and remove dependency on SAMUEL.
  • Updated org.guanxi.idp.SSO to fix deprecation errors after gx_lib upgrade. createSelfSignedKeystore() now imports org.bouncycastle.x509.X509V3CertificateGenerator instead of org.bouncycastle.jce.X509V3CertificateGenerator and uses latest version of X509V3CertificateGenerator.generate(key, “BC”). X509Name now uses Vector of ordered objects.
  • Updated WEB-INF/guanxi_idp/config/shared/map.xml to use ‘name’ attribute instead of ‘info’
  • Updated org.guanxi.idp.SSO to use SAML definitions in Common instead of SAMUEL.
  • Updated org.guanxi.idp.ARPEngine to use XMLBeans. Added support for chaining ARPs.
  • Updated org.guanxi.idp.attributors.FlatFileAttributor to pass ARP file path and name to new ARPEngine and only map an attribute if the original cannot be released.
  • Updated org.guanxi.idp.attributors.LDAPAttributor to pass ARP file path and name to new ARPEngine and only map an attribute if the original cannot be released.
  • Updated org.guanxi.idp.attributors.BodingtonAttributor to pass ARP file path and name to new ARPEngine only map an attribute if the original cannot be released.
  • Updated org.guanxi.idp.AttributeAuthority::addAttributesFromFarm() to remove dependency on DOM3
  • Updated config/shared/ldap.xml, added domain for scoped attributes.

SP

  • v1.3.2
  • Updated org.guanxi.sp.engine.Engine::doPost() to parse attribute response from a String instead of the InputStream to get round XMLBeans parsing bug. Updated doPost() to use Utils.createNCNameID(). Engine does not need SAMUEL now.
  • Updated org.guanxi.sp.guard.Guard to make use of config object instead of individual params in context. Moved all cookie processing to org.guanxi.sp.guard.Podder.
  • Updated org.guanxi.sp.guard.Podder to make use of config object instead of individual params in context. Now handles all cookie processing. Now gets cookie prefix from config.
  • Updated WEB-INF/_xml/guard/guard-servlet.txt to add load-on-startup for each servlet
  • Updated WEB-INF/_xml/guard/guard-filter.txt to remove attributePrefix init-param - now gets it from config file
  • Updated WEB-INF/config/guanxi-sp-guard/guanxi_sp_guard.xml, added AttributePrefix to GuardInfo. Added Prefix to Cookie.
  • Updated org.guanxi.sp.engine.Engine to use config object in servlet context
  • Updated org.guanxi.sp.engine.WAYFLocation to use config object in servlet context
  • Updated WEB-INF/_xml/engine/engine-servlet.txt to remove guardTemplateFile and metadataDirectory init-params - now gets them from config file
  • Updated WEB-INF/config/guanxi_sp_engine.xml, added WAYFLocationsFile and GuardTemplateFile. Added ID.
  • Updated org.guanxi.sp.engine.WAYFLocation to make use of config object instead of individual params in context
  • Updated org.guanxi.sp.engine.Engine to make use of config object instead of individual params in context
  • Updated org.guanxi.sp.engine.CA to get it’s init-params from the config file instead. Fixed bug in URL generation on Windows. Fixed bug when creating more than one Guard without a restart. Now dynamically loads new Guards. Added scheme and port.
  • Updated org.guanxi.sp.guard.Guard, removed verify() method. All session verification requests from an Engine are now handled by the SessionVerifier service.
  • Updated org.guanxi.sp.guard.GuardRequest to use new Pod bag methods. Updated javadoc.
  • Updated org.guanxi.sp.guard.AttributeConsumer. Now parses SOAP and SAML Response instead of the Bag. Now adds attributes as convenience objects to the Bag. Now stores raw SAML in the Bag. Updated javadoc. Fixed bug in process() that threw NPE if no attributes were coming from IdP.
  • Updated build.xml webapp target to remove unused jars.
  • Modified org.guanxi.sp.engine.CA::createSignedCert() to use latest BouncyCastle library with X509V3CertificateGenerator::generate(key, “BC”)
  • Updated org.guanxi.so.guard.Guard. Now puts it’s identity info (ID, cookie prefix, cookie name) into the servlet context for use by webapps it protects. Now gets the cookie prefix from the config. Stores servlet context in Pod. Added static method deactivatePod()
  • Updated request_guard.jsp to include scheme and port.
  • Updated org.guanxi.sp.engine.Engine to use the ID from the config file as the CN of it’s certificate.

Common

  • v1.3.1
  • Removed org.guanxi.common.security.ssl.GuanxiSocketFactory as we no longer use Axis
  • Removed org.guanxi.common.WSDL
  • Removed org.guanxi.common.SOAPUtils
  • Updated org.guanxi.common.security.SecUtils, fixed bug where it synchronising on SOAPUtils
  • Updated org.guanxi.common.definitions.Guani, removed a load of context attribute definitions as modules now use config object
  • Updated org.guanxi.common.Pod. Changed get/setAttributes() to get/setBag(). Updated javadoc. Added ServletContext storing.
  • Updated org.guanxi.common.Bag. Rewritten to remove SAX parsing of raw SOAP message from Engine. Now stores original SAML Response as a String.
  • Updated org.guanxi.common.definitions.Guani, added DEFAULT_ARP_FILE, DEFAULT_MAP_FILE, DEFAULT_SHARED_CONFIG_DIR, CONTEXT_ATTR_GUARD_COOKIE_PREFIX, CONTEXT_ATTR_GUARD_ID, CONTEXT_ATTR_GUARD_COOKIE_NAME
  • Updated org.guanxi.common.AttributeMap to use XMLBeans. Added support for chaining rules. Added support for chaining map files. Now based on provderId groupings of mapping rules.
  • Updated build.xml and build.properties to remove SAMUEL
  • Added org.guanxi.common.definitions.SAML
  • Updated org.guanxi.common.security.SecUtils::createSelfSignedKeystore() for latest BouncyCastle
  • Updated org.guanxi.common.definitions.Shibboleth::SAMLP_SUCCESS to solve namespace problems in IdP.
  • Added org.guanxi.common.definitions.EduPerson

Core

  • v1.0.4
  • Updated xsd/guanxi-sp.xsd, added AttributePrefix to guardInfoType. Added WAYFLocationsFile and GuardTemplateFile to Engine. Added Prefix to cookieType. Added ID to Engine.
  • Updated xsd/guanxi-idp.xsd, partitioned sections to be more readable, removed plugin, renamed ldap-authenticator to ldap, added BodingtonAttributor, added FlatFile* config schema types. Added userAttributes type for attributor bean usage. Changed ‘info’ to ‘name’ under ‘mapType’. Added mapIncludeType. Added domain to ldap.
  • Updated xsd/guanxi.xsdconfig, added ffUserAttributeType, ffUserType and attributorAttributeType mappings.
  • guanxibeans.jar now has version info in the filename (guanxi-beans-1.3.0.jar)

WAYF

  • v1.2.7
  • Updated org.guanxi.wayf.WAYF to use XMLBeans
  • Removed SAMUEL from build.properties and build.xml
  • Updated build.propeties and build.xml, added Java version information for compiling.

gx_lib

  • v1.3.6
  • Updated guanxibeans.jar with latest schema
  • Cleaned out, overhauled and updated to latest versions of all jars

comments powered by Disqus