mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-14 20:08:02 +00:00
35df5f61fc
# Which Problems Are Solved There are multiple issues with the metadata and error handling of SAML: - When providing a SAML metadata for an IdP, which cannot be processed, the error will only be noticed once a user tries to use the IdP. - Parsing for metadata with any other encoding than UTF-8 fails. - Metadata containing an enclosing EntitiesDescriptor around EntityDescriptor cannot be parsed. - Metadata's `validUntil` value is always set to 48 hours, which causes issues on external providers, if processed from a manual down/upload. - If a SAML response cannot be parsed, only a generic "Authentication failed" error is returned, the cause is hidden to the user and also to actions. # How the Problems Are Solved - Return parsing errors after create / update and retrieval of an IdP in the API. - Prevent the creation and update of an IdP in case of a parsing failure. - Added decoders for encodings other than UTF-8 (including ASCII, windows and ISO, [currently supported]( |
||
---|---|---|
.. | ||
integration_test | ||
actions_converter.go | ||
actions.go | ||
auth_checks.go | ||
custom_text_converter.go | ||
custom_text.go | ||
flow.go | ||
iam.go | ||
idp_converter_test.go | ||
idp_converter.go | ||
idp.go | ||
information.go | ||
language.go | ||
oneof.go | ||
org_converter.go | ||
org.go | ||
policy_label_converter.go | ||
policy_label.go | ||
policy_lockout_converter.go | ||
policy_lockout.go | ||
policy_login_converter.go | ||
policy_login.go | ||
policy_notification.go | ||
policy_password_age_converter.go | ||
policy_password_age.go | ||
policy_password_complexity_converter.go | ||
policy_password_complexity.go | ||
policy_privacy_converter.go | ||
policy_privacy.go | ||
project_application_converter.go | ||
project_application.go | ||
project_converter.go | ||
project_grant_converter.go | ||
project_grant.go | ||
project.go | ||
replacer.md | ||
server.go | ||
user_converter.go | ||
user_grant_converter.go | ||
user_grant.go | ||
user.go |