Releases: perl-net-saml2/perl-Net-SAML2
Releases · perl-net-saml2/perl-Net-SAML2
Version 0.64 - Official CPAN release
0.64 -- Sun Feb 05 18:21:41 AST 2023
Release 0.63-TRIAL as production release
[ Significant Changes since 0.62 ]
Maintenance release that has a number of fixes for small issues. This is
the first release in some time that has been tested for SOAP connections and
SOAP Artifacts. The testapp has been updated to fix SOAP and the Shibboleth
and samltest.id IdPs.
- Minimum Perl version has been bumped to 5.12
- Contributors and authors set automatically
- Add Shibboleth and samltest.id as supported IdPs
- Allow encryption certificate in SP metadata
- LogoutRequest was missing NameQualifier and SPNameQualifier needed by some IdPs
- Fix bug in obtaining Assertion dates and message id and improve id validation
- Fix multiple SOAP issues including support for multiple certs in metadata
- New Net::SAML2::Protocol::Artifact to access parts of the ArtifactResponse
- Allow obtaining assertion substatus and allow assertions without NameID
- testapp:
- allow untrusted TLS SOAP connections
- read key and cert from config.yml
- fix metadata generation issues and make signing optional
- only enable logout bindings supported by IdP
- allow for custom attribute mapping by IdP
- Support for Shibboleth and samltest.id IdPs
[ Change Log ]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.64
Change Log
- 63edefa Increment Version number for release
- 17674de v0.63
SHA256 hash of CPAN release
169cfe44b426de2edd7208868c321ecd8bd5831a0b385052d62868675b42cef1 *Net-SAML2-0.64.tar.gz
-----BEGIN PGP SIGNATURE-----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=K4zH
-----END PGP SIGNATURE-----
Version 0.63-TRIAL
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.63
Change Log
- 8d0b962 use Moose is equivalent to use strict
- faf3ec7 Update for release 0.63
- bd7766e Merge pull request #158 from waterkip/attribute-id-typechecking
- 1688e1c Add XsdID as a type for id attribute type checking
- d03bb23 Merge pull request #157 from waterkip/GL-sub-status_for_consumers_in_assertion
- fc6a199 Get the substatus of a failed assertion
- d8ca5b9 Merge pull request #156 from timlegge/artifact_object
- 3c9e4fc Create a Artifact to hold the parts of the Artifact
- b9f50e8 Merge pull request #153 from timlegge/master
- 36652dc Fixes perl-net-saml2#152 - Incorrect id set on messages from XML
- 2c3cfac Merge pull request #155 from waterkip/GL-no-name_id_ADFS
- 33d9985 Allow assertion without a NameID
- 7d81f20 Merge pull request #154 from waterkip/GL-assertion-with_correct_dates
- 6a140ca Get the correct dates from the assertions
- 844f8d1 Merge pull request #151 from timlegge/idps
- 3d291ff testapp: allow attribute mapping by IdP
- 60a3592 testapp: only enable supported IdP logout bindings
- cfc5351 Add Shibboleth and samltest.id as supported IdPs
- 8f284d8 Merge pull request #147 from timlegge/name-qualifier3
- 0a9fe82 Merge pull request #146 from timlegge/testapp-changes
- 7a2de04 Merge pull request #142 from timlegge/fix-encrption-certs
- c81e384 Fix LogoutRequest's missing NameQualifier and SPNameQualifier for samletest.id
- e85848d Merge pull request #148 from timlegge/master
- cf8991a remove eol spaces
- ade3fed testapp: signed metadat messes with testing - make it an option
- 11d39de Merge pull request #145 from timlegge/testapp-changes
- 571f7a9 testapp Fix issue in metadata generation missing fully qualified URI
- 5f0412e Merge pull request #144 from timlegge/testapp-changes
- 01424dd testapp: key and cert should be read from config and missed https options
- 787bd1f Allow encryption key to be specified in the metadata.xml
- 5c8c6dc Merge pull request #143 from timlegge/ssl-hostname
- 1dbe327 Merge pull request #136 from timlegge/try-catch
- 69dae34 Merge pull request #141 from timlegge/fix-soap-xml
- f6740e4 testapp: allow SOAP connections to untrusted SSL servers
- eb48fa8 SOAP Some IdPs have issues with newlines in SOAP-ENV
- 83e30e1 SOAP binding should support multiple certs in the IdP Metadata Use Try::Tiny to handle exceptions
- a00f908 Merge pull request #140 from waterkip/subnametest
- ef2472d Install Sub::Name without running tests
- ca7e375 Merge pull request #139 from timlegge/master
- dffc8c8 Test::Deep requires perl 5.012 and newer
- 577f22d Merge pull request #137 from timlegge/master
- e213bae New Year advance Copyright
- 84b8ee8 Merge pull request #133 from timlegge/master
- 9f8b287 Set sane default values for testing testapp
- 0d96bf9 Merge pull request #131 from waterkip/contributors
- bf27ae9 Bump version to .63
- b782aa7 Set authors and contributors
- 013a0c6 Update contributors and reorder alphabetically
- d268c0f Add missing Credit for Gianni in 0.62
- a4e6ca5 v0.62
SHA256 hash of CPAN release
372f8951c48a553323d4ff070d19eac0b8de7840e79f5003a3babd0904aec8b6 *Net-SAML2-0.63-TRIAL.tar.gz
-----BEGIN PGP SIGNATURE-----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=6XaD
-----END PGP SIGNATURE-----
Version 0.62 - Official CPAN release
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.62
Change Log
- d7abc2c Merge pull request #129 from timlegge/force_authn
- e59ce1b Increment Version in Git Repo
- 165661e testapp allow the metadata or authnreq to be unsigned
- 9f41ae3 Fix testapp metadata generation
- 303a8a2 Fixes: #128 Support ForceAuthn and IsPassive in AuthnRequest
- 29b45e4 Minor pod updates
- 9d9ac1a Merge pull request #120 from waterkip/unsigned-authnrequest
- 17772d7 Update version number for release
- 1a5796b Add support to SP for SSO redirect binding without signed auth request
- 736bf78 Merge pull request #119 from dakkar/optional-sp-key
- 2de5268 fix POD typo
- 80658ae Redirect::key still optional, but more explicitly so
- bf7f771 make Redirect::key optional
SHA256 hash of CPAN release
88474f262f5dfef2e1e9c80f3e05570fc49fc7c0f8f43d68ebbad9dd8bceb1d0 *Net-SAML2-0.62.tar.gz
-----BEGIN PGP SIGNATURE-----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=GTvq
-----END PGP SIGNATURE-----
Version 0.61 - Official CPAN release
BREAKING CHANGES INCLUDED
See Changes for details
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.61
Change Log
- 85e2c1d Update Changes for 0.60
- f29670e Merge pull request #117 from waterkip/GH-116-signing_and_encryption_key
- e95e7c2 Fix bug where two keys with different usage fails
- c57b2b3 Merge pull request #118 from waterkip/GH-isdefault-default
- 33092f1 Add isDefault when isDefault is missing in assertion_consumer_service
- 66a4146 Bump version to .60
- 0c57f7f Merge pull request #113 from timlegge/release_0.59
- 812ea36 0.59 updates
- f589dd0 v0.59
- e8fb008 Merge pull request #112 from timlegge/master
- c1b25f9 Sync changes with the wiki page and clean up indents
- 764eb88 Merge pull request #111 from timlegge/master
- 2c432f2 Remove unnecessary parameters
- 1fc2b5f Merge pull request #110 from timlegge/master
- 3855393 Allow URIs that do not include scheme and host in redirect
- 5185a1a Merge pull request #85 from waterkip/GH-redirect-verify_fixes
- 6f2f3d1 Merge pull request #106 from waterkip/GH-docs-for_release
- e1774b6 Update docs for Net::SAML2::Protocol::LogoutRequest
- fdcfbeb Fix docs for Net::SAML2::Binding::Redirect
- 8d24c89 Update docs for Net::SAML2::Protocol::ArtifactResolve
- 27f6508 Update docs for Net::SAML::SP
- 4a89679 Fix docs for Net::SAML2::Binding::SOAP
- 9226e04 Merge pull request #84 from waterkip/GH-verify-xml-and_trust_anchors
- f43727d Verify the SAMLResponse based on the raw query string
- 5fd7f45 Merge pull request #17 from timlegge/issue12-multiple-keys
- 50f5c8a Fixes #12 - multiple signing keys in metadata
- 4902c89 Make SAML trust anchors work on verification of the SAML request
- af68b68 SOAP binding does not require a cacert anymore
- 1854e35 Implement verify_xml() call which only verifies the XML
- 519b3ac Merge pull request #102 from waterkip/changes-59
SHA256 hash of CPAN release
362bcde4f9f18ecb967c0d0cc900e9e197af6e57b766ad0cfdab0bd96bb1333d *Net-SAML2-0.61.tar.gz
-----BEGIN PGP SIGNATURE-----
iQIzBAEBAwAdFiEEMguXHBCUSzAt6mNu1fh7LgYGpfkFAmM87kIACgkQ1fh7LgYG
pfl27g/+J68fr5Sh3gB7KTvzX4VQv7H1Qr1irsjQJIUklCOYhAb9J6tm3qSKaFX5
J22z5zh+GnutUkjrQPQIo4o12ub5SHszxwFYyAW+PBANror4D/qB5qX1b7CPZaRY
m2AXJEWNKht79mAU7RLw21lQX+N8GgXgEd5M5/Dn8qOM0qZQHS6Omg2XnT9F1xlj
6OfaYqKCyJWiScppSPdeGp2aKBGXUmqNq3ueOWoEYE3tVHq6f+2ZysobRRB7JalJ
gWJVKuSRxK9KEzsACg49nQLY6cUz+AwF5YKGXD9xc8qRWTXPpN76fBXNA/oh229Z
qBWvd7wi/zXgnRRNwkGgTxREIGPLUxupHC9QSxkNQ0+qgUm+P7tpbWMcDDVobv98
txpAGaWIdookgy8ghS25QeN2EsZvXjxW1tF42DgBrDA4MiPN+5eInjrHl6m9Vi8w
oYxoa2UqWSSu28KKl1PAd9yh0B0OQcnbBMn61n2xBlN5NaVTYQAQbf08bxDffqLU
i6boABYJfoyiFUfgDDjeTggtd43utLQ9TMwyV5KmTrEzHh8qUjVSNKrOOyoj3Ngp
v/D3jBYnGJCstd9LpaZCk7u66C7pDiO0BE+rNr5McG7wXQVmvaC5r5PzWOrYJb9+
rtCM/3lQ9vPKw8Cmwc3gmjprg5KfXhanJ9oEWN/l4dKixN8XsrU=
=1uJp
-----END PGP SIGNATURE-----
Version 0.60-TRIAL
0.60 -- Mon Sep 19 10:53:23 ADT 2022
[ Significant Changes since 0.59 ]
There are multiple potentially BREAKING CHANGES depending on how you
have written your application. Your application may need updates for
this version.
[BREAKING CHANGES]
- Support multiple signing keys in the metadata. This version attempts
to ensure compatibility but the call to Net::SAML2::IdP->cert will return
an array of certs for each 'use'. It is, however, likely that there will
only be one cert in the array.
- Net::SAML2::Binding::SOAP was improved. The call to
Net::SAML2::Binding::SOAP->handle_request() now returns the XML whereas in
the past it returned the certificate's subject and the xml as an array.
This make it consistent with the Redirect and POST Bindings.
- Net::SAML2::Binding::POST was also improved. Previously the call to
Net::SAML2::Binding::POST->handle_response() returned inconsistent results
depending on whether a cacert was provided. This version returns the XML
of the decoded request.
- The testapp required only changes related to the call to
Net::SAML2::IdP->cert($use) that now returns an ARRAY.
[Changes of note:]
- Support multiple signing keys in the metadata. This version attempts to
ensure compatability but the call to Net::SAML2::IdP->cert will return an
array of certs for each $use. It is, however, likely that there will only
be one cert in the array.
- Redirects now validate the raw URI that is passed to the call. It is
assumed that the URI that your application has sent is unmodified from the
response that the web server received. lighttpd in particular normalizes
the response and will break Redirects from Microsoft Azure
(see lighttpd.conf in xt/testapp for a working configuration)
- Net::SAML2::Binding::SOAP and Net::SAML2::Binding::POST were improved.
- SAML trust anchors were implemented and the verification of the SAML
response was improved. It is possible to validate the response with
subject, issuer or issuer_hash as anchors in addition to the cacert.
Neither cacert nor anchors are required as long as the signature of
the response is valid. The cacert has not been required for the
Redirect or SOAP binding so this treats SOAP the same.
[Required Application Updates]
- There were several changed to the test suite that will likely need to be
made in your application:
- To support metadata.xml containing multiple KeyDescriptors the call to
Net::SAML2::IdP->cert($use) now returns an ARRAY. As this is an helper
function that is meant to allow you to pass the cert to another Net::SAML2
call it was deemed low risk. Your code may be unaffected.
- The call to Net::SAML2::Binding::SOAP->handle_request() needs to be updated
to reflect that it returns only the decoded XML not an array of the
Certificate Subject and XML. Depending how your application uses the
response will determine whether changes are required.
- The call to Net::SAML2::Binding::POST->handle_response() returned
inconsistent results depending on whether a cacert was provided. This
version returns the XML of the decoded request. Previously it returned
either 1 for success or if a cacert was used, either "(verified) and the
certificate Subject" or 0 if the certificate verification failed.
- The lighttpd.conf for the testapp did require a change to prevent it from
"normalizing" a SAML Logout Redirect. There are contradictory RFCs
concerning SAML and the "normalising" URIs. If you use lighttpd in a SAML
application with AZURE as your SAML IdP see
[lighttpd.conf](https://github.com/perl-net-saml2/perl-Net-SAML2/commit/3855393eb454097e1e326a516a573f37ce3456a3#diff-8fd15aaa870fd2b9cda596bf3bb870ce2723ae412e55f0b653124b45d87e1bea)
[Possible Impacts]
- It is worth noting that the testapp (that implements a rudimentary Service
Provider) included in the git repo did not require any changes to the
application for this version.
- While my setup tests against multiple IdPs I do not have a working SOAP
IdP at present.
[ Full Change Log ]
- e95e7c2 Fix bug where two keys with different usage fails
- 33092f1 Add isDefault when isDefault is missing in assertion_consumer_service
- 66a4146 Bump version to .60
- 812ea36 0.59 updates
- f589dd0 v0.59
- c1b25f9 Sync changes with the wiki page and clean up indents
- 2c432f2 Remove unnecessary parameters
- 3855393 Allow URIs that do not include scheme and host in redirect
- e1774b6 Update docs for Net::SAML2::Protocol::LogoutRequest
- fdcfbeb Fix docs for Net::SAML2::Binding::Redirect
- 8d24c89 Update docs for Net::SAML2::Protocol::ArtifactResolve
- 27f6508 Update docs for Net::SAML::SP
- 4a89679 Fix docs for Net::SAML2::Binding::SOAP
- f43727d Verify the SAMLResponse based on the raw query string
- 50f5c8a Fixes #12 - multiple signing keys in metadata
- 4902c89 Make SAML trust anchors work on verification of the SAML request
- af68b68 SOAP binding does not require a cacert anymore
- 1854e35 Implement verify_xml() call which only verifies the XML
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.60
Change Log
- 85e2c1d Update Changes for 0.60
- f29670e Merge pull request #117 from waterkip/GH-116-signing_and_encryption_key
- e95e7c2 Fix bug where two keys with different usage fails
- c57b2b3 Merge pull request #118 from waterkip/GH-isdefault-default
- 33092f1 Add isDefault when isDefault is missing in assertion_consumer_service
- 66a4146 Bump version to .60
- 0c57f7f Merge pull request #113 from timlegge/release_0.59
- 812ea36 0.59 updates
- f589dd0 v0.59
- e8fb008 Merge pull request #112 from timlegge/master
- c1b25f9 Sync changes with the wiki page and clean up indents
- 764eb88 Merge pull request #111 from timlegge/master
- 2c432f2 Remove unnecessary parameters
- 1fc2b5f Merge pull request #110 from timlegge/master
- 3855393 Allow URIs that do not include scheme and host in redirect
- 5185a1a Merge pull request #85 from waterkip/GH-redirect-verify_fixes
- 6f2f3d1 Merge pull request #106 from waterkip/GH-docs-for_release
- e1774b6 Update docs for Net::SAML2::Protocol::LogoutRequest
- fdcfbeb Fix docs for Net::SAML2::Binding::Redirect
- 8d24c89 Update docs for Net::SAML2::Protocol::ArtifactResolve
- 27f6508 Update docs for Net::SAML::SP
- 4a89679 Fix docs for Net::SAML2::Binding::SOAP
- 9226e04 Merge pull request #84 from waterkip/GH-verify-xml-and_trust_anchors
- f43727d Verify the SAMLResponse based on the raw query string
- 5fd7f45 Merge pull request #17 from timlegge/issue12-multiple-keys
- 50f5c8a Fixes #12 - multiple signing keys in metadata
- 4902c89 Make SAML trust anchors work on verification of the SAML request
- af68b68 SOAP binding does not require a cacert anymore
- 1854e35 Implement verify_xml() call which only verifies the XML
- 519b3ac Merge pull request #102 from waterkip/changes-59
SHA256 hash of CPAN release
8b43c7c495b4ca568f5b7dc6b1564d001f2f750db50ce35734e226f813d7c61a *Net-SAML2-0.60-TRIAL.tar.gz
-----BEGIN PGP SIGNATURE-----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=sc1S
-----END PGP SIGNATURE-----
Version 0.59 - Official CPAN release
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.59
Change Log
- 564fa93 Update Changes for .58 release
- 2a43f4e v0.58
SHA256 hash of CPAN release
46cd0810e134ae037b4576ea4863247ed303cc7baa68028c2ef68ce695bee556 *Net-SAML2-0.59.tar.gz
-----BEGIN PGP SIGNATURE-----
iQIzBAEBAwAdFiEEMguXHBCUSzAt6mNu1fh7LgYGpfkFAmMGz2AACgkQ1fh7LgYG
pfkqMA/+IDfFTKfwNGxyJtCnDdaU3DtMP0gwEnMKWq8FyvgR0hI6ylweAWnxHFLh
X9v0sLOxj7+zSAvudetmOfkjBSu3BwJjm/+aUWl+s43PyKYK6YJr73nxJ55GUjux
mlApFqW4iEc4K704WAo7wIB/mRt1RxmPIJcsd3UHDPkZ8a9CgJEUJRJCNkESvmkP
y9ej2WwUhrmODTKz9pE/6m8qKE32OEfIjx1+k5sVStpx7ZRuSXPdHVSGSPbCYZwV
IRo2M9bZE2rRy4HL4FL1aRotbcz+Z97wF+yEbwlyLm/gfMOwWvzWmBL2TLQNOSmq
Gx3GYwkT5pV9oM8Bqpe23Hg/BrH70sCgg7PakNoLgntWlFVRt843hLfCRLsoHemz
VXp0WohY9s3xs1uPNCbK27b58ArIcI1Isp9K0vFj9H72CVOvdD2PXs3IXjdfJOuy
nOcr6mBq6hRp4wePblacjzrpt033Sr+t0v64PwRjy7WgQlAoXe9CyK4KfKZagR7Q
Z2Svtd+focldHIJMSn71zsNGedo1OxZCn18MQphaW8B5w1vs41Gv4kIULkemNinj
TcNyq4AKpc+I8XYxx7nOqCNcYDe6Q/Ovhbbk04pOZV0Ma2UFIpb9NbCt84QN2Mwb
ddezSXbDygBap7ItB6GpIiaiV2y6ZJbXBMHnPGtZrggaIyh+X4Q=
=oTyk
-----END PGP SIGNATURE-----
Version 0.58-TRIAL
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.58
Change Log
- 863dd73 Merge pull request #97 from timlegge/master
- a245b94 Add test for lowercase url escaping
- 5aeb83e Merge pull request #98 from waterkip/author-tests
- ba0a803 Fix author tests with dzil
- 7ea329c Merge pull request #96 from timlegge/master
- 97898a2 fix pod for Assertion->nameid_format
- 4b67406 Merge pull request #95 from waterkip/GH-94-missing_docs
- 523ba92 Add missing POD for nameid, nameid_format in Protocol::Assertion
- ad0f5d0 Merge pull request #92 from waterkip/GH-nameid-in_logout_request
- 676732a Merge pull request #93 from timlegge/master
- fb3085d Update Changes for 0.57
- 250254d Merge pull request #91 from waterkip/master
- 6c63ed1 Make attributes in NameID optional
- d69b7dd Install sub::name first to prevent pipeline failures
- 7310b6c Bump version string post .57 release
- 1206d4a Merge pull request #89 from waterkip/GH-saml-request_requiredness
- 1841b8f Merge pull request #88 from timlegge/master
- 8b83b3e Make params optional in Binding::Redirect for SAMLResponse
- 6ada7ac Merge pull request #90 from waterkip/GH-cpm-instead_of_cpanm
- 3b2b96b Use cpm instead of cpanminus
- bc7eb07 nameid_format cannot be a zero length string
- f9bb612 Merge pull request #83 from waterkip/GH-soap-request_refactor
- 00e0f53 Merge pull request #80 from waterkip/GH-inject-own_lwp
- 1c5af31 Be able to inject own LWP::UserAgent to IdP new_from_url
- 074c429 Merge pull request #87 from waterkip/GH-actions-robustness
- 2abeb49 Add license to distro
- 3f7c673 Install deps manually
- ddec1c2 Merge pull request #86 from waterkip/GH-small-refactor
- 8ac300c Merge pull request #82 from waterkip/GH-soap-ua_and_request
- 4860d22 Merge pull request #81 from waterkip/GH-nameid-node_for_assertion
- 7f400a0 Install deps manually
- 14c075c Fix documentation and general code cleanup
- ca9fce1 Small refactor on Protocol::AuthnRequest
- 14fb479 Add builder to Binding::SOAP for LWP::UA
- 70ac5d0 Refactor Binding::SOAP::request
- 830275f Add nameid as a node so we can get the value and/or the format
- 928540c Merge pull request #79 from waterkip/GH-artifact-resolve_provider
- 066100f Really make provider optional in Protocol::ArtifactResolve
- 5673bb5 v0.56
- 071ab97 Merge pull request #78 from waterkip/GH-dev-version_in_main_module
- be0c386 Merge pull request #77 from waterkip/GH-defaults-in_binding-redirect
- 06f6052 Merge pull request #74 from waterkip/GH-cacert-optional_in_sp
- 088bc5e Merge pull request #75 from waterkip/GH-add-index_to_assertion
- 3c7f390 Set version in main module for downstream developers
- 22dbf06 Remove Dockerfile, we have github actions now
- 18fa0ed Add defaults to Net::SAML2::Binding::Redirect
- 6e28f36 Merge pull request #76 from waterkip/GH-auto-contributors_from_git
- 6fe4bdc Fix contributers automaticly from git
- 1348af5 Add the index in the assertion_consumer_service
- 02ab7be Make cacert optional in Net::SAML2::SP
- a40c396 Merge pull request #73 from waterkip/GH-spec-default_name_id
- 858dc57 Remove setting default format when not present in metadata
- 90a68ef Merge pull request #71 from waterkip/URN-constants
- 9e7c88a Introduce URN_XXX constants in NET::SAML2::SP
- 77f3be8 Merge pull request #72 from waterkip/GH-32-byts
- 6d424c6 Merge pull request #70 from waterkip/GH-feat-error-uri
- b2e3020 Change from 16 to 32 bytes of randomness
- 42159bc Allow error URI to be a full fledged URI
SHA256 hash of CPAN release
a192411123048a1a3d162cbc88c2d6407f8c09b687c2f6812e386b14d109163e *Net-SAML2-0.58-TRIAL.tar.gz
-----BEGIN PGP SIGNATURE-----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=yvo7
-----END PGP SIGNATURE-----
Version 0.56-TRIAL
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.56
Change Log
- 8ee4f57 Merge pull request #69 from waterkip/GH-46_acs_and_slo_injections
- 027d300 fixup! Implement new API for ACS/SLO data in metadata
- d81549a Implement new API for ACS/SLO data in metadata
- 01d5fb7 Merge pull request #67 from waterkip/testsuite-defaults
- 7c51e1b Merge pull request #68 from waterkip/GH-actions
- 10b9ab0 Only use defaults/required attrs in net_saml2_sp() test method
- 55d6e5e Install Moose in a seperate action
- f4d0718 Run Github actions on pull requests
- 7eb44fe Make Math::Pari installable
- 1fe7b8b cpanm is provided by the perl images
- 7f0c885 Update perl images in the matrix
- 915adaa Merge pull request #65 from waterkip/GH-cleanup-dist.ini
- f754ad7 Merge pull request #66 from waterkip/GH-46-optional_URIs
- b25642f Make some URI's optional in the constructor
- f01ef30 Remove dependencies from dist.ini
- 57142a1 Merge pull request #64 from waterkip/bug-61
- 5e6c0f0 Add ds:KeyName to md:KeyDescriptor/ds:Keyinfo
- c6b9dfb Fix SAML metadata signing
- b18d316 Add missing pod from PR #62
- 9f8cd26 Merge pull request #62 from waterkip/sign-metadata_optional
- 7e637b7 Make signing metadata optional
- beba53f Merge pull request #63 from waterkip/cert-text_builder
- 493af8c Merge pull request #60 from waterkip/sp-defaults
- 29503c9 Use builder for _cert_text
- 5e94d9c Add defaults to authnreq_signed and want_assertions_signed
- c2e49e4 v0.55
SHA256 hash of CPAN release
01a37fc47548391cb3458cddd6b07e02b521b28169d6e76e022142a962e76b0e *Net-SAML2-0.56-TRIAL.tar.gz
-----BEGIN PGP SIGNATURE-----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=swA6
-----END PGP SIGNATURE-----
Version 0.57 - Official CPAN release
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Net::SAML2
Release 0.57
Change Log
- 8ee4f57 Merge pull request #69 from waterkip/GH-46_acs_and_slo_injections
- 027d300 fixup! Implement new API for ACS/SLO data in metadata
- d81549a Implement new API for ACS/SLO data in metadata
- 01d5fb7 Merge pull request #67 from waterkip/testsuite-defaults
- 7c51e1b Merge pull request #68 from waterkip/GH-actions
- 10b9ab0 Only use defaults/required attrs in net_saml2_sp() test method
- 55d6e5e Install Moose in a seperate action
- f4d0718 Run Github actions on pull requests
- 7eb44fe Make Math::Pari installable
- 1fe7b8b cpanm is provided by the perl images
- 7f0c885 Update perl images in the matrix
- 915adaa Merge pull request #65 from waterkip/GH-cleanup-dist.ini
- f754ad7 Merge pull request #66 from waterkip/GH-46-optional_URIs
- b25642f Make some URI's optional in the constructor
- f01ef30 Remove dependencies from dist.ini
- 57142a1 Merge pull request #64 from waterkip/bug-61
- 5e6c0f0 Add ds:KeyName to md:KeyDescriptor/ds:Keyinfo
- c6b9dfb Fix SAML metadata signing
- b18d316 Add missing pod from PR #62
- 9f8cd26 Merge pull request #62 from waterkip/sign-metadata_optional
- 7e637b7 Make signing metadata optional
- beba53f Merge pull request #63 from waterkip/cert-text_builder
- 493af8c Merge pull request #60 from waterkip/sp-defaults
- 29503c9 Use builder for _cert_text
- 5e94d9c Add defaults to authnreq_signed and want_assertions_signed
- c2e49e4 v0.55
SHA256 hash of CPAN release
155807d99eac184a796897c20b2060ae341948e28e838b216eddfec0924dfd71 *Net-SAML2-0.57.tar.gz
-----BEGIN PGP SIGNATURE-----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=4m5J
-----END PGP SIGNATURE-----
Version 0.55 - Official CPAN release
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Net::SAML2
Release 0.55
Change Log
- 159332d Bump version for 0.55 release
- 92a1eb5 Support Unsigned encrypted Assertions
- 39016c6 v0.54
SHA256 hash of CPAN release
65e809584fe1b1866f64be6d912390f22bf39cfa4a6e86537cf62d02df68b2e6 *Net-SAML2-0.55.tar.gz
-----BEGIN PGP SIGNATURE-----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=C73/
-----END PGP SIGNATURE-----