Ignore:
Timestamp:
05/10/07 17:55:51 (13 years ago)
Author:
pjkersha
Message:

Updated Attribute Authority adding new info to the map configuration:

  • The DN of Attribute Authority cert
  • the cert DN of the Login Service https server
  • the cert DN for the https server making REQUESTS to the Login Service. This enables the latter to validate requests and prevent phishing attacks.

Also added a new WSDL operation getAllHostsInfo. This combines getHostInfo and getTrustedHostInfo simplifying code for the WAYF.

ndg.security.common/ndg/security/common/m2CryptoSSLUtility.py: HostCheck? class can now accept multiple peerCertDNs to validate against.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/python/www/html/attAuthority.wsdl

    r2178 r2931  
    1717          <xsd:element name="hostname" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    1818          <xsd:element name="aaURI" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     19          <xsd:element name="aaDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    1920          <xsd:element name="loginURI" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     21          <xsd:element name="loginServerDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     22          <xsd:element name="loginRequestServerDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    2023          <xsd:element name="roleList" type="xsd:string" minOccurs="0" maxOccurs="unbounded"/> 
    2124        </xsd:sequence> 
     
    5053            <xsd:element name="hostname" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    5154            <xsd:element name="aaURI" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     55            <xsd:element name="aaDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    5256            <xsd:element name="loginURI" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     57            <xsd:element name="loginServerDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
     58            <xsd:element name="loginRequestServerDN" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    5359          </xsd:sequence> 
    5460        </xsd:complexType> 
     
    6773          <xsd:sequence> 
    6874            <xsd:element name="trustedHosts" type="tns:HostInfo" minOccurs="0" maxOccurs="unbounded"/> 
     75          </xsd:sequence> 
     76        </xsd:complexType> 
     77      </xsd:element> 
     78 
     79      <xsd:element name="getAllHostsInfo"> 
     80        <xsd:complexType/> 
     81      </xsd:element> 
     82 
     83      <xsd:element name="getAllHostsInfoResponse"> 
     84        <xsd:complexType> 
     85          <xsd:sequence> 
     86            <xsd:element name="hosts" type="tns:HostInfo" minOccurs="0" maxOccurs="unbounded"/> 
    6987          </xsd:sequence> 
    7088        </xsd:complexType> 
     
    110128  </wsdl:message> 
    111129 
     130  <wsdl:message name="getAllHostsInfoInputMsg"> 
     131    <wsdl:part name="parameters" element="tns:getAllHostsInfo"/> 
     132  </wsdl:message> 
     133 
     134  <wsdl:message name="getAllHostsInfoOutputMsg"> 
     135    <wsdl:part name="parameters" element="tns:getAllHostsInfoResponse"/> 
     136  </wsdl:message> 
     137 
    112138  <wsdl:message name="getX509CertInputMsg"> 
    113139    <wsdl:part name="parameters" element="tns:getX509Cert"/> 
     
    132158      <wsdl:input message="tns:getTrustedHostInfoInputMsg"/> 
    133159      <wsdl:output message="tns:getTrustedHostInfoOutputMsg"/> 
     160    </wsdl:operation> 
     161 
     162    <wsdl:operation name="getAllHostsInfo"> 
     163      <wsdl:input message="tns:getAllHostsInfoInputMsg"/> 
     164      <wsdl:output message="tns:getAllHostsInfoOutputMsg"/> 
    134165    </wsdl:operation> 
    135166 
     
    175206    </wsdl:operation> 
    176207 
     208    <wsdl:operation name="getAllHostsInfo"> 
     209      <soap:operation soapAction="getAllHostsInfo"/> 
     210      <wsdl:input> 
     211        <soap:body use="literal"/> 
     212      </wsdl:input> 
     213      <wsdl:output> 
     214        <soap:body use="literal"/> 
     215      </wsdl:output>  
     216    </wsdl:operation> 
     217 
    177218    <wsdl:operation name="getX509Cert"> 
    178219      <soap:operation soapAction="getX509Cert"/> 
Note: See TracChangeset for help on using the changeset viewer.