Overview

File python-python-saml.changes of Package python-python-saml

-------------------------------------------------------------------
Wed Oct 25 16:22:46 UTC 2017 - sean.marlow@suse.com

- Update to v2.3.0 2017-9-16
  + Improve decrypt method, Add an option to decrypt an element in
    place or copy it before decryption.
  + On a LogoutRequest if the NameIdFormat is entity, NameQualifier
    and SPNameQualifier will be ommited. If the NameIdFormat is
    not entity and a NameQualifier is provided, then the
    SPNameQualifier will be also added.
  + Be able to get at the auth object the last processed ID
    (response/assertion) and the last generated ID.
  + Reset errorReason attribute of the auth object before each
    Process method
  + Fix issue on getting multiple certs when only sign or
    encryption certs
  + Allow empty nameid if setting wantNameId is false. Only raise
    Exceptions when strict mode is enabled
- Update to v2.2.3 2017-7-15
  + Replace some etree.tostring calls, that were introduced
    recfently, by the sanitized call provided by defusedxml
  + Update dm.xmlsec.binding requirement to 1.3.3 version
- Update to v2.2.2 2017-6-18
  + Be able to relax SSL Certificate verification when retrieving
    idp metadata
  + Be able to register future SP x509cert on the settings and
    publish it on SP metadata
  + Be able to register more than 1 Identity Provider x509cert,
    linked with an specific use (signing or encryption
  + Allow metadata to be retrieved from source containing data of
    multiple entities
  + Adapt IdP XML metadata parser to take care of multiple IdP
    certificates and be able to inject the data obtained on the
    settings.
  + Publish KeyDescriptor[use=encryption] only when required
  + Checking the status of response before assertion count
  + Add Pyramid demo example
  + Allows underscores in URL hosts
  + NameID Format improvements
  + Be able to provide a NameIDFormat to LogoutRequest
  + Add DigestMethod support. (Add sign_algorithm and
    digest_algorithm parameters to sign_metadata and add_sign)
  + Validate serial number as string to work around libxml2
    limitation
  + Make the Issuer on the Response Optional
- Update to v2.2.1 2017-1-11
  + Optionally raise detailed exceptions vs. returning False.
  + Implement a more specific exception class for handling some
    validation errors. Improve/Fix tests
  + Add hooks to retrieve last-sent and last-received requests and
    responses
  + Improved inResponse validation on Responses
  + Fix attributeConsumingService serviceName format in README
- Update to v2.2.0 2016-10-14
  + Several security improvements:
  + Improve Signature validation process
  + Work-around for xmlsec.initialize
  + Fix flask demo error handling and improve documentation
  + Update LICENSE to include MIT rather than BSD license
  + Fix typographical errors in docstring
  + Fix RequestedAttribute Issue
  + Fix __build_signature method. If relay_state is null not be
    part of the SignQuery
  + Add support for non-ascii fields in settings
- Update to v2.1.9 2016-6-27
  + Change the decrypt assertion process.
  + Add 2 extra validations to prevent Signature wrapping attacks.
- Update to v2.1.8 2016-6-03
  + Fix Metadata XML (RequestedAttribute)
  + Fix Windows specific Unix date formatting bug.
  + Docs for OSx instlltion of libsecxml1
  + Fix SHA384 Constant URI
  + Refactor of settings.py to make it a little more readable.
  + Bugfix for ADFS lowercase signatures
  + READMEs suggested wrong cert name
- Update to v2.1.7 2016-5-14
  + AttributeConsumingService support
  + Compare Assertion InResponseTo if not None
  + Return empty list when there are no audience values
  + Passing NameQualifier through to logout request
  + Make deflate process when retrieving built SAML messages
    optional
  + Add debug parameter to decrypt method
  + Fix Idp Metadata parser
  + Add documentation related to the new IdP metadata parser
    methods
  + Extract the already encoded value directly from get_data
  + Fix typo and add extra assertions in util decrypt test
  + Fix Signature with empty URI support
  + Allow AuthnRequest with no NameIDPolicy
  + Remove requirement of NameID on SAML responses
- Update to v2.1.6 2016-2-15
  + Prevent signature wrapping attack!!
  + Add support for nested NameID children inside 'AttributeValues'
  + Improve how we obtain the settings path.
  + Update docs adding reference to test depencence installation
  + Fix Organization element on SP metadata.
  + Support Responses that don't have AttributeStatements.
- Move to single spec format Python 2 only.

-------------------------------------------------------------------
Wed Nov 25 12:02:29 UTC 2015 - mcihar@suse.cz

- Initial packaging, needed for python-social-auth
openSUSE Build Service is sponsored by
Places