Ignore:
Timestamp:
29/01/10 14:07:36 (11 years ago)
Author:
pjkersha
Message:
  • #1088 Important fix to AuthnRedirectResponseMiddleware? to set redirect ONLY when SSL client authentication has just succeeded in the upstream middleware AuthKitSSLAuthnMiddleware. This bug was causing the browser to redirect to the wrong place following OpenID sign in in the case where the user is already logged into their provider and selects a new relying party to sign into.
    • Improvements to Provider decide page interface: leave out messages about attributes that the provider can't retrieve for the RP. Also included NDG style help icon.
File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/NDGSecurity/python/ndg_security_test/ndg/security/test/integration/authz_lite/securityservices.ini

    r6276 r6440  
    123123 
    124124openid.relyingparty.baseURL = %(authkit.openid.baseurl)s 
    125 openid.relyingparty.idpWhitelistConfigFilePath = %(here)s/openidrelyingparty/ssl-idp-validator.xml 
     125#openid.relyingparty.idpWhitelistConfigFilePath = %(here)s/openidrelyingparty/ssl-idp-validator.xml 
    126126openid.relyingparty.signinInterfaceMiddlewareClass = ndg.security.server.wsgi.openid.relyingparty.signin_interface.genshi.GenshiSigninTemplate 
    127 #openid.relyingparty.signinInterface.staticContentRootDir = %(here)s/openidrelyingparty/public 
     127openid.relyingparty.signinInterface.staticContentRootDir = %(here)s/openidrelyingparty/public 
    128128openid.relyingparty.signinInterface.baseURL = %(openid.relyingparty.baseURL)s 
    129129openid.relyingparty.signinInterface.initialOpenID = %(openIDProviderIDSelectURI)s 
     
    176176# specified - see commented out entry for firstName below.  The number of 
    177177# attributes for each attribute name defaults to 1 unless otherwise set 
    178 authkit.openid.ax.typeuri.firstName=http://openid.net/schema/namePerson/first 
    179 authkit.openid.ax.alias.firstName=firstName 
    180 #authkit.openid.ax.count.firstName=1 
     178#authkit.openid.ax.typeuri.firstName=http://openid.net/schema/namePerson/first 
     179#authkit.openid.ax.alias.firstName=firstName 
     180##authkit.openid.ax.count.firstName=1 
    181181#authkit.openid.ax.required.firstName=True 
    182 authkit.openid.ax.typeuri.lastName=http://openid.net/schema/namePerson/last 
    183 authkit.openid.ax.alias.lastName=lastName 
    184 authkit.openid.ax.required.lastName=True 
    185 authkit.openid.ax.typeuri.emailAddress=http://openid.net/schema/contact/internet/email 
    186 authkit.openid.ax.alias.emailAddress=emailAddress 
    187 authkit.openid.ax.required.emailAddress=True 
    188  
     182#authkit.openid.ax.typeuri.lastName=http://openid.net/schema/namePerson/last 
     183#authkit.openid.ax.alias.lastName=lastName 
     184#authkit.openid.ax.required.lastName=True 
     185#authkit.openid.ax.typeuri.emailAddress=http://openid.net/schema/contact/internet/email 
     186#authkit.openid.ax.alias.emailAddress=emailAddress 
     187#authkit.openid.ax.required.emailAddress=True 
     188 
     189# ESG Gateway requested parameters 
     190authkit.openid.ax.typeuri.uuid:http://openid.net/schema/person/guid 
     191authkit.openid.ax.alias.uuid=uuid 
     192authkit.openid.ax.typeuri.username:http://openid.net/schema/namePerson/friendly 
     193authkit.openid.ax.alias.username=username 
     194authkit.openid.ax.typeuri.firstname:http://openid.net/schema/namePerson/first 
     195authkit.openid.ax.alias.firstname=firstname 
     196authkit.openid.ax.required.firstname:True 
     197authkit.openid.ax.typeuri.middlename:http://openid.net/schema/namePerson/middle 
     198authkit.openid.ax.alias.middlename=middlename 
     199authkit.openid.ax.typeuri.lastname:http://openid.net/schema/namePerson/last 
     200authkit.openid.ax.required.lastname:True 
     201authkit.openid.ax.alias.lastname=lastname 
     202authkit.openid.ax.typeuri.email:http://openid.net/schema/contact/internet/email 
     203authkit.openid.ax.required.email:True 
     204authkit.openid.ax.alias.email=email 
     205authkit.openid.ax.typeuri.gateway:http://www.earthsystemgrid.org/gateway 
     206authkit.openid.ax.alias.gateway=gateway 
     207authkit.openid.ax.typeuri.organization:http://openid.net/schema/company/name 
     208authkit.openid.ax.alias.organization=organization 
     209authkit.openid.ax.typeuri.city:http://openid.net/schema/contact/city/home 
     210authkit.openid.ax.alias.city=city 
     211authkit.openid.ax.typeuri.state:http://openid.net/schema/contact/state/home 
     212authkit.openid.ax.alias.state=state 
     213authkit.openid.ax.typeuri.country:http://openid.net/schema/contact/country/home 
     214authkit.openid.ax.alias.country=country 
    189215 
    190216[filter:SSLCientAuthnRedirectResponseFilter] 
Note: See TracChangeset for help on using the changeset viewer.