Cross Reference: /forgerock/openam-v13/openam-server-only/src/main/webapp/WEB-INF/template/sms/validationServiceDelegationPolicy.xml

History log of /forgerock/openam-v13/openam-server-only/src/main/webapp/WEB-INF/template/sms/validationServiceDelegationPolicy.xml
Revision		Date	Author	Comments Expand
438b8fdd07872285ac90f36dfb13cd2975b76511		17-Nov-2014	Mark de Reeper <mark.dereeper@forgerock.com>	Backport to 11.0.x of OPENAM-1773 and OPENAM-4768. /forgerock/openam-v13/main/java/org/forgerock/openam/security/whitelist/ValidGotoUrlExtractor.java /forgerock/openam-v13/openam-clientsdk/pom.xml /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/AuthD.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/AuthUtils.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/LoginState.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/util/ISAuthConstants.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/setup/ConfigureData.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/security/whitelist/ValidGotoUrlExtractor.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/UpgradeException.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/helpers/AuthServiceHelper.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/steps/MigrateValidGotoSetting.java /forgerock/openam-v13/openam-core/src/main/resources/amUpgrade.properties /forgerock/openam-v13/openam-core/src/main/resources/validationService.properties /forgerock/openam-v13/openam-core/src/main/resources/validationService.xml /forgerock/openam-v13/openam-distauth/src/main/java/com/sun/identity/authentication/distUI/LoginViewBean.java /forgerock/openam-v13/openam-distauth/src/main/java/com/sun/identity/authentication/distUI/LogoutViewBean.java /forgerock/openam-v13/openam-federation/openam-federation-library/src/main/java/org/forgerock/openam/saml2/plugins/ValidRelayStateExtractor.java /forgerock/openam-v13/openam-server-only/src/main/resources/config/serviceNames.properties /forgerock/openam-v13/openam-server-only/src/main/resources/services/amAuth.xml validationServiceDelegationPolicy.xml /forgerock/openam-v13/openam-shared/src/main/java/com/sun/identity/shared/locale/L10NMessageImpl.java /forgerock/openam-v13/openam-shared/src/main/java/com/sun/identity/shared/whitelist/URLPatternMatcher.java /forgerock/openam-v13/openam-shared/src/main/java/org/forgerock/openam/shared/security/whitelist/RedirectUrlValidator.java /forgerock/openam-v13/openam-shared/src/main/java/org/forgerock/openam/shared/security/whitelist/ValidDomainExtractor.java /forgerock/openam-v13/openam-shared/src/test/java/org/forgerock/openam/shared/security/whitelist/RedirectUrlValidatorTest.java
f015d695b84915f1c2c3fcf81f339548af1852c4		26-Jun-2014	Peter Major <majorpetya@gmail.com>	Fix for OPENAM-1773 and OPENAM-3462 - review: CR-3803 DAS now supports goto URL validation. Changes: * The valid goto URL domain setting has been moved to a new service called validationService, the new property name is "openam-auth-valid-goto-resources" * A new delegation policy has been created that allows agent accounts to read the validationService settings * The necessary upgrade step has been implemented that should migrate existing valid goto domains to the new service (also removes the old ones), which also ensures that the new delegation policy is added to the system. * The Goto URL validation logic has been extracted out to a separate class called GotoUrlValidator, which is now can be used from both openam-core and openam-federation-library (for Relaystate evaluations). /forgerock/openam-v13/openam-clientsdk/pom.xml /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/AuthD.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/AuthUtils.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/service/LoginState.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/authentication/util/ISAuthConstants.java /forgerock/openam-v13/openam-core/src/main/java/com/sun/identity/setup/ConfigureData.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/security/whitelist/ValidGotoUrlExtractor.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/UpgradeException.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/helpers/AuthServiceHelper.java /forgerock/openam-v13/openam-core/src/main/java/org/forgerock/openam/upgrade/steps/MigrateValidGotoSetting.java /forgerock/openam-v13/openam-core/src/main/resources/amUpgrade.properties /forgerock/openam-v13/openam-core/src/main/resources/validationService.properties /forgerock/openam-v13/openam-core/src/main/resources/validationService.xml /forgerock/openam-v13/openam-distauth/src/main/java/com/sun/identity/authentication/distUI/LoginViewBean.java /forgerock/openam-v13/openam-distauth/src/main/java/com/sun/identity/authentication/distUI/LogoutViewBean.java /forgerock/openam-v13/openam-federation/openam-federation-library/src/main/java/com/sun/identity/saml2/common/SAML2Utils.java /forgerock/openam-v13/openam-federation/openam-federation-library/src/main/java/org/forgerock/openam/saml2/plugins/ValidRelayStateExtractor.java /forgerock/openam-v13/openam-server-only/src/main/resources/config/serviceNames.properties /forgerock/openam-v13/openam-server-only/src/main/resources/services/amAuth.xml validationServiceDelegationPolicy.xml /forgerock/openam-v13/openam-shared/src/main/java/com/sun/identity/shared/locale/L10NMessageImpl.java /forgerock/openam-v13/openam-shared/src/main/java/com/sun/identity/shared/whitelist/URLPatternMatcher.java /forgerock/openam-v13/openam-shared/src/main/java/org/forgerock/openam/shared/security/whitelist/RedirectUrlValidator.java /forgerock/openam-v13/openam-shared/src/main/java/org/forgerock/openam/shared/security/whitelist/ValidDomainExtractor.java /forgerock/openam-v13/openam-shared/src/test/java/org/forgerock/openam/shared/security/whitelist/RedirectUrlValidatorTest.java