Skip to content

Commit

Permalink
Track changed location for keylist resources
Browse files Browse the repository at this point in the history
  • Loading branch information
@iay
iay committed Jul 8, 2024
1 parent fe66653 commit 212653a
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions mdx/validation-beans.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -427,31 +427,31 @@

<bean id="debian.1024" parent="mda.X509RSAOpenSSLBlacklistValidator"
p:keySize="1024"
p:blacklistResource="classpath:net/shibboleth/metadata/validate/x509/debian-1024.txt"/>
p:blacklistResource="classpath:net/shibboleth/metadata/keylists/rsa/legacy/debian-1024.txt"/>

<bean id="debian.2048" parent="mda.X509RSAOpenSSLBlacklistValidator"
p:keySize="2048"
p:blacklistResource="classpath:net/shibboleth/metadata/validate/x509/debian-2048.txt"/>
p:blacklistResource="classpath:net/shibboleth/metadata/keylists/rsa/debian-2048.txt"/>

<bean id="debian.4096" parent="mda.X509RSAOpenSSLBlacklistValidator"
p:keySize="4096"
p:blacklistResource="classpath:net/shibboleth/metadata/validate/x509/debian-4096.txt"/>
p:blacklistResource="classpath:net/shibboleth/metadata/keylists/rsa/debian-4096.txt"/>

<!--
Blacklist of known compromised 1024-bit keys, e.g., "dummy" keys shipped with
SAML products that are sometimes deployed by accident.
-->
<bean id="compromised.1024" parent="mda.X509RSAOpenSSLBlacklistValidator"
p:keySize="1024"
p:blacklistResource="classpath:net/shibboleth/metadata/validate/x509/compromised-1024.txt"/>
p:blacklistResource="classpath:net/shibboleth/metadata/keylists/rsa/legacy/compromised-1024.txt"/>

<!--
Blacklist of known compromised 2048-bit keys, e.g., "dummy" keys shipped with
SAML products that are sometimes deployed by accident.
-->
<bean id="compromised.2048" parent="mda.X509RSAOpenSSLBlacklistValidator"
p:keySize="2048"
p:blacklistResource="classpath:net/shibboleth/metadata/validate/x509/compromised-2048.txt"/>
p:blacklistResource="classpath:net/shibboleth/metadata/keylists/rsa/compromised-2048.txt"/>

<!--
check_standard_certificates
Expand Down

0 comments on commit 212653a

Please sign in to comment.