Releases: IdentityPython/pysaml2
Releases · IdentityPython/pysaml2
Version 4.6.0
v4.6.0
This tag was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
a17f233
This commit was signed with the committer’s verified signature.
The key has expired.
c00kiemon5ter
Ivan Kanakarakis
4.6.0 (2018-08-07)
- Allow configuration and specification of id attribute name
- Retrieve SLO endpoint by the appropriate service type
- Deprecate AESCipher and aes.py module
- Add saml2.cryptography module
- Always generate a random IV for AES operations / Address CVE-2017-1000246
- Remove unused and broken RSA code
- Add more nameid-format definitions
- Remove invalid nameid-format
- Retrieve pacakge version from pkg_resources
- Fully replace Cryptodome library with cryptography
- Fix SSRF caused by URI attribute of Reference element
- Omit relay state in HTTP-POST response when empty
- Fix eidas natural person attribute URIs
- Add eidas attributes for legal person to saml2_uri attributemap
- Fix deprecation and resource warnings.
- Fix date format to show month, not minutes
- Fix typos
- s2repoze: Define session_info variable before use
- s2repoze: Correctly pull the SAMLRequest from Redirect LogoutRequests
- s2repoze: Include SCRIPT_NAME when checking whether current URL is a logout endpoint
- tests: Document and test all supported Python versions
- tests: Generate and upload coverage reports to codecov
- tests: Include dependencies information in test report
- tests: Run tests in verbose mode
- tests: Clean up unclosed files causing ResourceWarnings
- build: Set minimal version for cryptography package
- build: Set the correct version in the docs
- build: Update build manifest to include the correct files
- build: Switch from setup.py to setup.cfg
- docs: Add editorconfig file with basic rules
- docs: Update gitignore file
- docs: Remove downloads badge as it is no longer available
- docs: Update all pypi.python.org URLs to pypi.org
- docs: Updated license and renamed the file.
- examples: Do not request a signed response - backwards compatibility
- examples: Fix wsgiserver usage for example sp
- examples: Fix cherrypy.wsgiserver usage
4.5.0
Breaking release!
The SP by default now, requires the IdP to sign authentication responses. This is configurable through the want_response_signed option. To preserve the old behaviour, set want_response_signed to False.
v4.4.0
v4.3.0
v4.2.0
v4.1.0
4.0.0
A couple of API changes necessitated an major version number change.
The changes where concerned with non-xml signing and signature verification.
The API of the functions verify_redirect_signature (sigver.py) and http_redirect_message (pack.py) was changes.
As where the method use_http_get of the class HTTPBase (httpbase.py)
V3.0.2
v3.0.0
Three major changes:
- Now supports Python 3.X at the same time the support for Python 2.6 is lost.
- All parts of the package is now collected in one module. This is a change that breaking change compared to earlier releases hence the major version change.
- Significant overhaul of the encryption/signing parts.