Project

General

Profile

Bug #38

Allow automatic configuration of service provider on authn requests

Added by Benjamin Dauvergne about 14 years ago. Updated over 13 years ago.

Status:
Fermé
Priority:
Normal
Category:
-
Target version:
Start date:
20 May 2010
Due date:
% Done:

90%

Estimated time:
15:00 h
Patch proposed:
Planning:

Description

We should try to retrieve the SP metadatas through HTTP on the fly when an AuthnRequest
comes from an unknown SP and the SP id is an http/https URL.

We should cache the retrieved metadatas as permitted by the hosting server for
the metadatas. Even if caching is forbidden we should put a minimum cachetime
to disable possibilities of a DDOS attack.

This functionality must be controlled by a checkbox in the configuration panel.

For request coming from non-admin registered service providers, user consent should never be assumed.

History

#1

Updated by Benjamin Dauvergne about 14 years ago

  • Target version set to 2.0.0
#2

Updated by Benjamin Dauvergne about 14 years ago

  • Assignee set to Benjamin Dauvergne
#3

Updated by Benjamin Dauvergne over 13 years ago

  • % Done changed from 0 to 90

Il manque le contrôle du cache et du consentement.

#4

Updated by Benjamin Dauvergne over 13 years ago

  • Status changed from Nouveau to Résolu (à déployer)

Done.

#5

Updated by Benjamin Dauvergne over 13 years ago

  • Status changed from Résolu (à déployer) to Fermé
#6

Updated by Benjamin Dauvergne over 13 years ago

consent was added by Mikaël.

Also available in: Atom PDF