shibboleth-sp2_2.2.1+dfsg-2~bpo50+1_i386.changes is NEW
(new) libapache2-mod-shib2_2.2.1+dfsg-2~bpo50+1_i386.deb extra httpd
Federated web single sign-on system (Apache module)
The Shibboleth System is a standards based software package for web
single sign-on across or within organizational boundaries. It supports
authorization and attribute exchange using the OASIS SAML 2.0 protocol.
Shibboleth allows sites to make informed authorization decisions for
individual access of protected online resources while allowing users to
establish their identities with their local authentication systems.
.
This package contains the Shibboleth Apache module for service providers
(web servers providing resources protected by Shibboleth) and the
supporting shibd daemon.
(new) libshibsp-dev_2.2.1+dfsg-2~bpo50+1_i386.deb extra libdevel
Federated web single sign-on system (development)
The Shibboleth System is a standards based software package for web
single sign-on across or within organizational boundaries. It supports
authorization and attribute exchange using the OASIS SAML 2.0 protocol.
Shibboleth allows sites to make informed authorization decisions for
individual access of protected online resources while allowing users to
establish their identities with their local authentication systems.
.
This package contains the headers and other necessary files to build
applications that use the Shibboleth SP library.
(new) libshibsp-doc_2.2.1+dfsg-2~bpo50+1_all.deb extra doc
Federated web single sign-on system (API docs)
The Shibboleth System is a standards based software package for web
single sign-on across or within organizational boundaries. It supports
authorization and attribute exchange using the OASIS SAML 2.0 protocol.
Shibboleth allows sites to make informed authorization decisions for
individual access of protected online resources while allowing users to
establish their identities with their local authentication systems.
.
This package contains the Shibboleth SP library API documentation.
(new) libshibsp3_2.2.1+dfsg-2~bpo50+1_i386.deb extra libs
Federated web single sign-on system (runtime)
The Shibboleth System is a standards based software package for web
single sign-on across or within organizational boundaries. It supports
authorization and attribute exchange using the OASIS SAML 2.0 protocol.
Shibboleth allows sites to make informed authorization decisions for
individual access of protected online resources while allowing users to
establish their identities with their local authentication systems.
.
This package contains the Shibboleth SP runtime library.
(new) shibboleth-sp2-schemas_2.2.1+dfsg-2~bpo50+1_all.deb extra text
Federated web single sign-on system (schemas)
The Shibboleth System is a standards based software package for web
single sign-on across or within organizational boundaries. It supports
authorization and attribute exchange using the OASIS SAML 2.0 protocol.
Shibboleth allows sites to make informed authorization decisions for
individual access of protected online resources while allowing users to
establish their identities with their local authentication systems.
.
This package contains the additional schemas used by the Shibboleth SP.
(new) shibboleth-sp2_2.2.1+dfsg-2~bpo50+1.diff.gz extra web
(new) shibboleth-sp2_2.2.1+dfsg-2~bpo50+1.dsc extra web
(new) shibboleth-sp2_2.2.1+dfsg.orig.tar.gz extra web
Changes: shibboleth-sp2 (2.2.1+dfsg-2~bpo50+1) lenny-backports; urgency=low
.
* Backport to stable.
* Build against libxerces-c2-dev instead of libxerces-c-dev.
.
shibboleth-sp2 (2.2.1+dfsg-2) unstable; urgency=low
.
* Change the libapache2-mod-shib2 section to httpd, matching override.
* Add a NEWS.Debian entry for libapache2-mod-shib2 that explains the
recommended configuration update for the 2.2 version. Thanks, Scott
Cantor and Kristof BAJNOK.
.
shibboleth-sp2 (2.2.1+dfsg-1) unstable; urgency=high
.
* New upstream release.
- SECURITY: Fix improper handling of certificate names containing nul
characters.
- SECURITY: Correctly validate the use attribute of KeyDescriptors,
preventing use of a key for signing or for encryption if its use
field says it may not be used for that purpose.
- New shib-metagen script for generating Shibboleth SP metadata.
- Support preserving form data across user authentication.
- Support internal server redirection while maintaining protection.
- Fix incompatibility between lazy sessions and servlet containers.
- Fix some problems with dynamic metadata resolution.
- Fix incompatibility with mod_include.
- Fix single logout via SOAP.
- Fix shibd crash with invalid metadata.
- Fix crash in chaining attribute resolver.
- Avoid infinite loop on empty attribute mapped to REMOTE_USER.
- Fix handling of some Unicode data in relaystate data in URLs.
- Correctly return Success to LogoutRequest where appropriate.
- Avoid chunked encoding in back-channel calls.
- Correctly check Recipient values in assertions.
- Fix attributePrefix handling in some contexts.
- Fix generated metadata DiscoveryResponse.
- Fix handling of unsigned responses with encryption.
- Fix handling of InProcess property.
* Rename library package for upstream SONAME bump.
* Tighten build dependencies and schema package dependencies on
opensaml2 and xmltooling.
* Build against Xerces-C 3.0.
* Dynamically determine the Debian and upstream package versions for
get-orig-source from debian/changelog.
* Update libapache2-mod-shib2's README.Debian for changes to the
TestShib web pages.
* Use the automatically-extracted package version as the version number
for the man pages.
* Update standards version to 3.8.3.
- Create /var/run/shibboleth in the init script if it doesn't exist.
- Don't ship /var/run/shibboleth in the package.
- Remove /var/run/shibboleth in postrm if it exists.
.
shibboleth-sp2 (2.1.dfsg1-2) unstable; urgency=low
.
* Redo the variable quoting in doxygen.m4 so that configure can be
rebuilt with Autoconf 2.63. (Closes: #518039)
.
shibboleth-sp2 (2.1.dfsg1-1) unstable; urgency=low
.
[ Russ Allbery ]
* New upstream version.
- New memory cache storage backend.
- Schema validation is now optional.
- Many bug fixes.
* Bump SONAME of libshibsp following upstream's versioning.
* Build-depend on libsaml2-dev >= 2.1 following the upstream spec file
and libxmltooling-dev 1.1 just in case (required by OpenSAML 2.1).
* Fix the name of the tarball created by get-orig-source.
* Logcheck rules.
* Tighten the dependency versioning; the 2.1 SP library requires the
2.1 schemas from the Shibboleth SP and OpenSAML and the 1.1 schemas
from XMLTooling.
* Remove duplicate Section field for libapache2-mod-shib2.
.
[ Ferenc Wagner ]
* Follow the libshibsp1->2 package rename in the dh_makeshlibs invocation.
* Remove the Shibboleth minor version number from README.Debian.
* Comment out the reference to WS-Trust.xsd from the catalog.xml file in
shibboleth-sp2-schemas and document how to enable it again.
Override entries for your package:
Announcing to backports-changes@lists.backports.org
Your package contains new components which requires manual editing of
the override file. It is ok otherwise, so please be patient. New
packages are usually added to the override file about once a week.
You may have gotten the distribution wrong. You'll get warnings above
if files already exist in other distributions.
ist in other distributions.
Reply to: