You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@syncope.apache.org by il...@apache.org on 2017/08/15 05:07:30 UTC
[1/2] syncope git commit: Relaxing hostname checks for SAML metadata
URLs
Repository: syncope
Updated Branches:
refs/heads/2_0_X 443bf9edf -> 624808ef5
refs/heads/master c0c51bf16 -> 278525b7c
Relaxing hostname checks for SAML metadata URLs
Project: http://git-wip-us.apache.org/repos/asf/syncope/repo
Commit: http://git-wip-us.apache.org/repos/asf/syncope/commit/624808ef
Tree: http://git-wip-us.apache.org/repos/asf/syncope/tree/624808ef
Diff: http://git-wip-us.apache.org/repos/asf/syncope/diff/624808ef
Branch: refs/heads/2_0_X
Commit: 624808ef59511e358f07e5fd569135cec9a76d3b
Parents: 443bf9e
Author: Francesco Chicchiriccò <il...@apache.org>
Authored: Tue Aug 15 07:07:03 2017 +0200
Committer: Francesco Chicchiriccò <il...@apache.org>
Committed: Tue Aug 15 07:07:03 2017 +0200
----------------------------------------------------------------------
.../src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/syncope/blob/624808ef/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
----------------------------------------------------------------------
diff --git a/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java b/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
index d5e980a..c07badb 100644
--- a/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
+++ b/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
@@ -130,7 +130,8 @@ public class SAML2SPLogic extends AbstractSAML2Logic<AbstractBaseBean> {
private static final Encryptor ENCRYPTOR = Encryptor.getInstance();
- private static final UrlValidator URL_VALIDATOR = new UrlValidator(new String[] { "http", "https" });
+ private static final UrlValidator URL_VALIDATOR = new UrlValidator(
+ new String[] { "http", "https" }, UrlValidator.ALLOW_LOCAL_URLS);
@Autowired
private AccessTokenDataBinder accessTokenDataBinder;
[2/2] syncope git commit: Relaxing hostname checks for SAML metadata
URLs
Posted by il...@apache.org.
Relaxing hostname checks for SAML metadata URLs
Project: http://git-wip-us.apache.org/repos/asf/syncope/repo
Commit: http://git-wip-us.apache.org/repos/asf/syncope/commit/278525b7
Tree: http://git-wip-us.apache.org/repos/asf/syncope/tree/278525b7
Diff: http://git-wip-us.apache.org/repos/asf/syncope/diff/278525b7
Branch: refs/heads/master
Commit: 278525b7c8257681a2a95b87c06ed63e6e3a21b5
Parents: c0c51bf
Author: Francesco Chicchiriccò <il...@apache.org>
Authored: Tue Aug 15 07:07:03 2017 +0200
Committer: Francesco Chicchiriccò <il...@apache.org>
Committed: Tue Aug 15 07:07:19 2017 +0200
----------------------------------------------------------------------
.../src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/syncope/blob/278525b7/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
----------------------------------------------------------------------
diff --git a/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java b/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
index 0809020..39c7bfa 100644
--- a/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
+++ b/ext/saml2sp/logic/src/main/java/org/apache/syncope/core/logic/SAML2SPLogic.java
@@ -129,7 +129,8 @@ public class SAML2SPLogic extends AbstractSAML2Logic<AbstractBaseBean> {
private static final Encryptor ENCRYPTOR = Encryptor.getInstance();
- private static final UrlValidator URL_VALIDATOR = new UrlValidator(new String[] { "http", "https" });
+ private static final UrlValidator URL_VALIDATOR = new UrlValidator(
+ new String[] { "http", "https" }, UrlValidator.ALLOW_LOCAL_URLS);
@Autowired
private AccessTokenDataBinder accessTokenDataBinder;