Mahara

Add signature.algorithm as config field in the SAML configuration

Bug #1704887 reported by Kristina Hoeppner on 2017-07-17

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Mahara	Fix Released	Wishlist	F Devine	Mahara 17.10.0

Bug Description

The default SAML implementation only supports SHA1 at the moment. Some IDPs do not allow that anymore. Therefore, a SAML config would need to get a line added manually:

htdocs/auth/saml/config/config.php inside the config array, add
the following line

'signature.algorithm' =>
'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256';

It would be better if that was more configurable directly on the front-end rather than in core code.

That field could be added to /admin/extensions/pluginconfig.php?plugintype=auth&pluginname=saml

Tags:

Revision history for this message

Kristina Hoeppner (kris-hoeppner) wrote on 2017-07-17:

Francis is looking into this.

Kristina Hoeppner (kris-hoeppner) on 2017-07-17

Changed in mahara:
assignee:	nobody → F Devine (catalystfd)

Revision history for this message

Kristina Hoeppner (kris-hoeppner) wrote on 2017-07-18:

In review: https://reviews.mahara.org/#/c/7878/

Revision history for this message

Mahara Bot (dev-mahara) wrote on 2017-09-21: A change has been merged

Reviewed: https://reviews.mahara.org/7878
Committed: https://git.mahara.org/mahara/mahara/commit/059b0765e4ce6867cccfda3c6b1d5426fe2c878d
Submitter: Robert Lyon (<email address hidden>)
Branch: master

commit 059b0765e4ce6867cccfda3c6b1d5426fe2c878d
Author: Francis Devine <email address hidden>
Date: Tue Jul 18 11:48:32 2017 +1200

Bug 1704887: Expose signing algorithm config to mahara

Allows you to set the signature algorithm for simplesamlphp from the
Mahara SAML plugin configuration screen.

The default setting is sha256, with sha1 available as a fallback for
those institutions who need it.

For an already existing site the default is set to sha1 as that is what
it would have been previously

behatnotneeded

Change-Id: I3eb628d837bdabbfc7641620e94fc2f127beceb9

Robert Lyon (robertl-9) on 2017-09-21

Changed in mahara:
status:	In Progress → Fix Committed

Kristina Hoeppner (kris-hoeppner) on 2017-09-29

tags:	added: nomin
tags:	added: nominatedfeature removed: nomin

Robert Lyon (robertl-9) on 2017-10-30

Changed in mahara:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.