Commit b7d99ad0 authored by haemmer's avatar haemmer
Browse files

Added copyright notice to all files

Fixed #407
parent ad118607
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
// WAYF Identity Provider Configuration file // WAYF Identity Provider Configuration file
// Find below some example entries of Identity Providers, categories and // Find below some example entries of Identity Providers, categories and
......
SWITCH WAYF Copyright 2010 SWITCH - Serving Swiss Universities.
See LICENSE file for details.
------------------------------------------------------------------------------- -------------------------------------------------------------------------------
Copyright 2010 SWITCH - Serving Swiss Universities SWITCH WAYF
Contact: aai@switch.ch or go to http://www.switch.ch/aai/wayf Contact: aai@switch.ch or go to http://www.switch.ch/aai/wayf
Version: See head of file 'WAYF' in the same directory Version: See head of file 'WAYF' in the same directory
Project web site: https://forge.switch.ch/redmine/projects/wayf Project web site: https://forge.switch.ch/redmine/projects/wayf
...@@ -18,7 +20,7 @@ The Discovery Service protocol as defined in ...@@ -18,7 +20,7 @@ The Discovery Service protocol as defined in
http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-idp-discovery.pdf http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-idp-discovery.pdf
states that the protocol creates opportunities for phishing attacks as do all states that the protocol creates opportunities for phishing attacks as do all
SSO protocols that make use of redirection. The specification states that an SSO protocols that make use of redirection. The specification states that an
implementation should examine the 'return' parameter used in a Discovery implementation "SHOULD" examine the 'return' parameter used in a Discovery
Service request and match it against the <idpdisc:DiscoveryResponse> Service request and match it against the <idpdisc:DiscoveryResponse>
extension in SAML metadata. The implementation of the Discovery Service protocol extension in SAML metadata. The implementation of the Discovery Service protocol
in the SWITCHwayf prior to version 1.14 does NOT verify the return parameter in the SWITCHwayf prior to version 1.14 does NOT verify the return parameter
...@@ -342,6 +344,7 @@ For category entries, only Type, (local) Name and Index are relevant. ...@@ -342,6 +344,7 @@ For category entries, only Type, (local) Name and Index are relevant.
------------------------------------------------------------------------------- -------------------------------------------------------------------------------
Version History: Version History:
X.Y.Z - Added proper copyright statements to all source code files
1.14.1 - Corrected behaviour of $enableDSReturnParamCheck and 1.14.1 - Corrected behaviour of $enableDSReturnParamCheck and
$useACURLsForReturnParamCheck. There won't be an error anymore if an SP $useACURLsForReturnParamCheck. There won't be an error anymore if an SP
has no <idpdisc:DiscoveryResponse> extension defined. In such a case has no <idpdisc:DiscoveryResponse> extension defined. In such a case
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
/* /*
****************************************************************************** ******************************************************************************
SWITCH PHP WAYF, SWITCHwayf
Copyright 2009 SWITCH - Serving Swiss Universities
Version: 1.14.1 Version: 1.14.1
Contact: aai@switch.ch Contact: aai@switch.ch
Web site: http://www.switch.ch/aai/wayf Web site: http://www.switch.ch/aai/wayf
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
//****************************************************************************** //******************************************************************************
// This file contains the WAYF/DS configuration. Adapt the settings to reflect // This file contains the WAYF/DS configuration. Adapt the settings to reflect
// your environment and then do some testing before deploying the WAYF. // your environment and then do some testing before deploying the WAYF.
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- Identity Provider Selection: Start--> <!-- Identity Provider Selection: Start-->
<h1><?php echo getLocalString('header'); ?></h1> <h1><?php echo getLocalString('header'); ?></h1>
<p class="switchaai"> <p class="switchaai">
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- EMBEDDED-WAYF-START --> <!-- EMBEDDED-WAYF-START -->
<script type="text/javascript"><!-- <script type="text/javascript"><!--
// To use this JavaScript, please access: // To use this JavaScript, please access:
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- Error Message: Start--> <!-- Error Message: Start-->
<h2><?php echo getLocalString('invalid_query') ?></h2> <h2><?php echo getLocalString('invalid_query') ?></h2>
<p> <p>
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- Body: End --> <!-- Body: End -->
</td> </td>
</tr> </tr>
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html> <html>
<head> <head>
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- Identity Provider Permanent Note: Start--> <!-- Identity Provider Permanent Note: Start-->
<h1><?php echo getLocalString('settings'); ?></h1> <h1><?php echo getLocalString('settings'); ?></h1>
<script language="JavaScript" type="text/javascript"> <script language="JavaScript" type="text/javascript">
......
<?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities ?>
<!-- Identity Provider Permanent Settings: Start--> <!-- Identity Provider Permanent Settings: Start-->
<h1><?php echo getLocalString('permanent_select_header') ?></h1> <h1><?php echo getLocalString('permanent_select_header') ?></h1>
<p class="switchaai"> <p class="switchaai">
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
/******************************************************************************/ /******************************************************************************/
// Commonly used functions for the WAYF // Commonly used functions for the WAYF
/******************************************************************************/ /******************************************************************************/
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
// WAYF localized language strings // WAYF localized language strings
// Make sure to use entities instead of plain UTF-8 characters for // Make sure to use HTML entities instead of plain UTF-8 characters for
// non-ASCII characters if you are using the Embedded WAYF. It could be that the // non-ASCII characters if you are using the Embedded WAYF. It could be that the
// Embedded WAYF is used on non-UTF8 web pages, which then could cause // Embedded WAYF is used on non-UTF8 web pages, which then could cause
// encoding issues // encoding issues
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
/*
* This file is used to dynamically create the list of IdPs to be // This file is used to dynamically create the list of IdPs to be
* displayed for the WAYF/DS service based on the federation metadata. // displayed for the WAYF/DS service based on the federation metadata.
* Configuration parameters are specified in config.php. // Configuration parameters are specified in config.php.
*/
// Make sure this script is not accessed directly // Make sure this script is not accessed directly
if(isRunViaCLI()){ if(isRunViaCLI()){
......
<?php <?php // Copyright (c) 2010, SWITCH - Serving Swiss Universities
/* /*
****************************************************************************** ******************************************************************************
This file contains the some functions that render HTML code. This file contains the some functions that render HTML code.
...@@ -331,7 +332,7 @@ function submitForm(){ ...@@ -331,7 +332,7 @@ function submitForm(){
// Redirect user to SP handler // Redirect user to SP handler
if (wayf_use_discovery_service){ if (wayf_use_discovery_service){
redirect_url = wayf_sp_samlDSURL + '?entityID=' redirect_url = wayf_sp_samlDSURL + '?entityID='
+ NonFedEntityID + encodeURIComponent(NonFedEntityID)
+ '&target=' + encodeURIComponent(wayf_return_url); + '&target=' + encodeURIComponent(wayf_return_url);
// Make sure the redirect always is being done in parent window // Make sure the redirect always is being done in parent window
...@@ -343,7 +344,7 @@ function submitForm(){ ...@@ -343,7 +344,7 @@ function submitForm(){
} else { } else {
redirect_url = wayf_sp_handlerURL + '?providerId=' redirect_url = wayf_sp_handlerURL + '?providerId='
+ NonFedEntityID + encodeURIComponent(NonFedEntityID)
+ '&target=' + encodeURIComponent(wayf_return_url); + '&target=' + encodeURIComponent(wayf_return_url);
// Make sure the redirect always is being done in parent window // Make sure the redirect always is being done in parent window
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment