connector/saml/testdata · e137db978d374d0a21b13171452c48e2862648b2 · go / dex

saml: add tests case covering tampered NameID field (comment) · 608260d0

Stephan Renatus authored Feb 28, 2018

As sketched here:

https://developer.okta.com/blog/2018/02/27/a-breakdown-of-the-new-saml-authentication-bypass-vulnerability

Thought it was interesting to see how our SAML connector behaved. And
it seems to be behaving well. :)
Signed-off-by: Stephan Renatus <srenatus@chef.io>

608260d0

Name	Last commit	Last update
..
assertion-signed.tmpl		Loading commit data...
assertion-signed.xml		Loading commit data...
bad-ca.crt		Loading commit data...
bad-ca.key		Loading commit data...
bad-status.tmpl		Loading commit data...
bad-status.xml		Loading commit data...
ca.crt		Loading commit data...
ca.key		Loading commit data...
gen.sh		Loading commit data...
good-resp.tmpl		Loading commit data...
good-resp.xml		Loading commit data...
idp-cert.pem		Loading commit data...
idp-resp-signed-assertion.xml		Loading commit data...
idp-resp-signed-assertion0.xml		Loading commit data...
idp-resp-signed-message-and-assertion.xml		Loading commit data...
idp-resp-signed-message.xml		Loading commit data...
idp-resp.xml		Loading commit data...
oam-ca.pem		Loading commit data...
oam-resp.xml		Loading commit data...
okta-ca.pem		Loading commit data...
okta-resp.xml		Loading commit data...
tampered-resp.xml		Loading commit data...
two-assertions-first-signed.tmpl		Loading commit data...
two-assertions-first-signed.xml		Loading commit data...