Skip to content

Commit

Permalink
Add key length check to eduGAIN verify verbs on individual channels.
Browse files Browse the repository at this point in the history 
Note: not included in production checks.
  • Loading branch information
@iay
iay committed Nov 14, 2013
1 parent 422cf4c commit 550d735
Show file tree
Hide file tree
Showing 3 changed files with 36 additions and 0 deletions.
12 changes: 12 additions & 0 deletions mdx/at_aconet/verbs.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,6 +81,18 @@
<list>
<ref bean="at_aconet_edugainEntities"/>
<ref bean="standardImportActions"/>

<bean parent="X509CertificateValidationStage"
p:id="checkCertificates">
<property name="validators">
<list>
<!-- Error on RSA key length less than 2048 bits. -->
<bean parent="X509CertificateRSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
</list>
</property>
</bean>

<ref bean="errorTerminatingFilter"/>
</list>
</property>
Expand Down
12 changes: 12 additions & 0 deletions mdx/cl_cofre/verbs.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,6 +59,18 @@
<list>
<ref bean="cl_cofre_edugainEntities"/>
<ref bean="standardImportActions"/>

<bean parent="X509CertificateValidationStage"
p:id="checkCertificates">
<property name="validators">
<list>
<!-- Error on RSA key length less than 2048 bits. -->
<bean parent="X509CertificateRSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
</list>
</property>
</bean>

<ref bean="errorTerminatingFilter"/>
</list>
</property>
Expand Down
12 changes: 12 additions & 0 deletions mdx/se_swamid/verbs.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,6 +81,18 @@
<list>
<ref bean="se_swamid_edugainEntities"/>
<ref bean="standardImportActions"/>

<bean parent="X509CertificateValidationStage"
p:id="checkCertificates">
<property name="validators">
<list>
<!-- Error on RSA key length less than 2048 bits. -->
<bean parent="X509CertificateRSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
</list>
</property>
</bean>

<ref bean="errorTerminatingFilter"/>
</list>
</property>
Expand Down

0 comments on commit 550d735

Please sign in to comment.