Releases: vrk-kpa/suomifi-passport-saml
v1.3.3-sfi.2
Bumped xml-crypto version to ^2.0.0 as quick fix to: https://www.npmjs.com/advisories/1583
v1.3.3-sfi.0
Synced with upstream, see: https://github.com/bergie/passport-saml/releases/tag/v1.3.3
v1.2.0-sfi.1
New features
#14 add support for encrypted nameID in logout response handling
v1.2.0-sfi.0
Synced with upstream, see: https://github.com/bergie/passport-saml/releases/tag/v1.2.0
v1.1.0-sfi.0
Synced with upstream, see: https://github.com/bergie/passport-saml/releases/tag/v1.1.0
v1.0.0-sfi.3
Synced with upstream, added support for InResponseTo for logout, convert cert to pem if not already.
New features
#8 InResponseTo check was not supported for logout.
Fixes
#7 According to docs, the cert should not include the pem header and footer lines. But the verify function requires them.
#9 Upstream merge
v1.0.0-sfi.2
New features:
- Remove InResponseTo value if response validation fails
Fixes:
- Fix Node Buffer deprecation warning: update 'new Buffer' to 'Buffer.from()'
- Update node version to >= 6
v1.0.0-sfi.1
Passport-SAML with Vetuma language selection extension and additional checks
Features
Extensions for Vetuma language selection and the following additional checks:
- Enforce audience checking
- Enforce validteInResponseTo checking
- Enforce assertion's signature validation
- Enforce (by default) encrypted assertion(s) only policy
- Enforce top level SAML response signature validation