diff --git a/RELEASE_NOTES.md b/RELEASE_NOTES.md index 4c1813f..a4b5114 100644 --- a/RELEASE_NOTES.md +++ b/RELEASE_NOTES.md @@ -5,10 +5,12 @@ # Current Version -Version 1.6.2 (Jun 25 2021) +Version 1.6.3 (Jun 25 2021) ## New Features ## Fixes and Improvements * [bugfix] add missing doc to set password for user exsaml +* [hotfix] disable XML signature validation until crypto-lib issues resolved + Code that references a currently undefined crypto-lib function commented out diff --git a/VERSION.txt b/VERSION.txt index fdd3be6..266146b 100644 --- a/VERSION.txt +++ b/VERSION.txt @@ -1 +1 @@ -1.6.2 +1.6.3 diff --git a/build.properties.xml b/build.properties.xml index 8ad91b5..4ecc28a 100644 --- a/build.properties.xml +++ b/build.properties.xml @@ -3,7 +3,7 @@ existdb-saml SAML implementation for existdb - 1.6.2 + 1.6.3 http://exist-db.org/xquery/exsaml beta rwxr-xr-x diff --git a/content/exsaml.xqm b/content/exsaml.xqm index ad656b0..f8884aa 100644 --- a/content/exsaml.xqm +++ b/content/exsaml.xqm @@ -270,8 +270,9 @@ declare %private function exsaml:validate-saml-response($resp as node()) { ) (: verify response signature if present :) - else if (boolean($sig) and not(exsaml:verify-response-signature($sig))) then - +(: COMMENTED OUT until crypto-lib issues resolved :) +(: else if (boolean($sig) and not(exsaml:verify-response-signature($sig))) then :) +(: :) (: must contain at least one assertion :) else if (empty($as)) then ( @@ -313,8 +314,9 @@ declare %private function exsaml:validate-saml-assertion($assertion as item()) { ) (: verify assertion signature if present :) - else if (boolean($sig) and not(exsaml:verify-assertion-signature($assertion))) then - +(: COMMENTED OUT until crypto-lib issues resolved :) +(: else if (boolean($sig) and not(exsaml:verify-assertion-signature($assertion))) then :) +(: :) (: maybe verify SubjectConfirmation/@Method :)