Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement query signature verification #11

Merged
merged 3 commits into from
Jul 27, 2022
Merged

Implement query signature verification #11

merged 3 commits into from
Jul 27, 2022

Conversation

Jguer
Copy link

@Jguer Jguer commented Jul 20, 2022
edited

  • Implement query signature validation for SLO http redirect bindings

TODO:

  • Add rsa-sha512 validation
  • Add rsa-sha1 validation

@Jguer Jguer marked this pull request as ready for review July 20, 2022 16:22
@Jguer Jguer self-assigned this Jul 20, 2022
@Jguer Jguer requested a review from gamab July 20, 2022 16:22
@Jguer Jguer changed the base branch from master to preview July 20, 2022 16:25
@Jguer Jguer force-pushed the jguer/validate-query-signatures branch 2 times, most recently from 474f939 to f8378ed Compare July 21, 2022 17:22
@Jguer
implement query signature verification
fcc2cc5 
add support for sha1 & sha512

add tests
@Jguer Jguer force-pushed the jguer/validate-query-signatures branch from f8378ed to fcc2cc5 Compare July 21, 2022 17:23
@Jguer Jguer requested a review from IevaVasiljeva July 26, 2022 16:17
IevaVasiljeva
IevaVasiljeva reviewed Jul 27, 2022
View reviewed changes
Copy link

@IevaVasiljeva IevaVasiljeva left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some initial suggestions and questions :)

I think it looks good overall, at least as far as I can tell.

service_provider.go Outdated Show resolved Hide resolved
service_provider_signed.go Show resolved Hide resolved
service_provider_signed.go Show resolved Hide resolved
service_provider_signed.go Outdated Show resolved Hide resolved
service_provider_signed.go Show resolved Hide resolved
service_provider_signed_test.go Show resolved Hide resolved
@Jguer @IevaVasiljeva
implement review feedback
b7db51f 
- Return error if signature is unsupported
- wrap errors

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
@Jguer Jguer merged commit 61cd9c9 into preview Jul 27, 2022
orgads pushed a commit to orgads/saml that referenced this pull request Dec 25, 2022
@Jguer @IevaVasiljeva @orgads
Implement query signature verification (grafana#11)
f82534a 
* implement query signature verification

add support for sha1 & sha512

add tests

* use query sign in redirect

* implement review feedback

- Return error if signature is unsupported
- wrap errors

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
orgads pushed a commit to orgads/saml that referenced this pull request Dec 27, 2022
@Jguer @IevaVasiljeva @orgads
Implement query signature verification (grafana#11)
1ffbe8c 
* implement query signature verification

add support for sha1 & sha512

add tests

* use query sign in redirect

* implement review feedback

- Return error if signature is unsupported
- wrap errors

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
Jguer added a commit that referenced this pull request Jan 2, 2023
@orgads @Jguer @IevaVasiljeva
Implement query signature verification (#11) (#16)
b61b9eb 
* implement query signature verification

add support for sha1 & sha512

add tests

* use query sign in redirect

* implement review feedback

- Return error if signature is unsupported
- wrap errors

Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>

Co-authored-by: Jo <joao.guerreiro@grafana.com>
Co-authored-by: Ieva <ieva.vasiljeva@grafana.com>
@Jguer Jguer mentioned this pull request Jan 2, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@IevaVasiljeva IevaVasiljeva IevaVasiljeva approved these changes

@gamab gamab Awaiting requested review from gamab

Assignees

@Jguer Jguer

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@Jguer @IevaVasiljeva