saml2-web-sso-0.20: Library and example web app for the SAML Web-based SSO profile.
Safe HaskellSafe-Inferred
LanguageHaskell2010

SAML2.WebSSO.XML

Synopsis

Documentation

class HasXML a where Source #

Minimal complete definition

parse

Methods

nameSpaces :: Proxy a -> [(ST, ST)] Source #

render :: a -> [Node] Source #

default render :: HasXMLRoot a => a -> [Node] Source #

parse :: MonadError String m => [Node] -> m a Source #

Instances

Instances details
HasXML SomeSAMLRequest Source # 
Instance details

Defined in SAML2.WebSSO.Test.Util.Misc

Methods

nameSpaces :: Proxy SomeSAMLRequest -> [(ST, ST)] Source #

render :: SomeSAMLRequest -> [Node] Source #

parse :: MonadError String m => [Node] -> m SomeSAMLRequest Source #

HasXML AuthnRequest Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy AuthnRequest -> [(ST, ST)] Source #

render :: AuthnRequest -> [Node] Source #

parse :: MonadError String m => [Node] -> m AuthnRequest Source #

HasXML AuthnResponse Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy AuthnResponse -> [(ST, ST)] Source #

render :: AuthnResponse -> [Node] Source #

parse :: MonadError String m => [Node] -> m AuthnResponse Source #

HasXML Conditions Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy Conditions -> [(ST, ST)] Source #

render :: Conditions -> [Node] Source #

parse :: MonadError String m => [Node] -> m Conditions Source #

HasXML IdPMetadata Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy IdPMetadata -> [(ST, ST)] Source #

render :: IdPMetadata -> [Node] Source #

parse :: MonadError String m => [Node] -> m IdPMetadata Source #

HasXML Issuer Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy Issuer -> [(ST, ST)] Source #

render :: Issuer -> [Node] Source #

parse :: MonadError String m => [Node] -> m Issuer Source #

HasXML NameID Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy NameID -> [(ST, ST)] Source #

render :: NameID -> [Node] Source #

parse :: MonadError String m => [Node] -> m NameID Source #

HasXML SPMetadata Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy SPMetadata -> [(ST, ST)] Source #

render :: SPMetadata -> [Node] Source #

parse :: MonadError String m => [Node] -> m SPMetadata Source #

HasXML Subject Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy Subject -> [(ST, ST)] Source #

render :: Subject -> [Node] Source #

parse :: MonadError String m => [Node] -> m Subject Source #

HasXML Document Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

nameSpaces :: Proxy Document -> [(ST, ST)] Source #

render :: Document -> [Node] Source #

parse :: MonadError String m => [Node] -> m Document Source #

class HasXML a => HasXMLRoot a where Source #

Methods

renderRoot :: a -> Element Source #

Instances

Instances details
HasXMLRoot SomeSAMLRequest Source # 
Instance details

Defined in SAML2.WebSSO.Test.Util.Misc

Methods

renderRoot :: SomeSAMLRequest -> Element Source #

HasXMLRoot AuthnRequest Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

renderRoot :: AuthnRequest -> Element Source #

HasXMLRoot AuthnResponse Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

renderRoot :: AuthnResponse -> Element Source #

HasXMLRoot IdPMetadata Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

renderRoot :: IdPMetadata -> Element Source #

HasXMLRoot SPMetadata Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

renderRoot :: SPMetadata -> Element Source #

HasXMLRoot Document Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

renderRoot :: Document -> Element Source #

class HasXMLImport us them where Source #

Methods

importXml :: MonadError String m => them -> m us Source #

exportXml :: us -> them Source #

Instances

Instances details
HasXMLImport AuthnRequest AuthnRequest Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => AuthnRequest0 -> m AuthnRequest Source #

exportXml :: AuthnRequest -> AuthnRequest0 Source #

HasXMLImport AuthnResponse Response Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Response -> m AuthnResponse Source #

exportXml :: AuthnResponse -> Response Source #

HasXMLImport Conditions Conditions Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Conditions0 -> m Conditions Source #

exportXml :: Conditions -> Conditions0 Source #

HasXMLImport IP IP Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => IP0 -> m IP Source #

exportXml :: IP -> IP0 Source #

HasXMLImport Issuer Issuer Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Issuer0 -> m Issuer Source #

exportXml :: Issuer -> Issuer0 Source #

HasXMLImport Locality SubjectLocality Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => SubjectLocality -> m Locality Source #

exportXml :: Locality -> SubjectLocality Source #

HasXMLImport NameID NameID Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => NameID0 -> m NameID Source #

exportXml :: NameID -> NameID0 Source #

HasXMLImport NameIdPolicy NameIDPolicy Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => NameIDPolicy -> m NameIdPolicy Source #

exportXml :: NameIdPolicy -> NameIDPolicy Source #

HasXMLImport Status Status Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Status0 -> m Status Source #

exportXml :: Status -> Status0 Source #

HasXMLImport Subject Subject Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Subject0 -> m Subject Source #

exportXml :: Subject -> Subject0 Source #

HasXMLImport SubjectConfirmationData SubjectConfirmationData Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => SubjectConfirmationData0 -> m SubjectConfirmationData Source #

exportXml :: SubjectConfirmationData -> SubjectConfirmationData0 Source #

HasXMLImport Time DateTime Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => DateTime -> m Time Source #

exportXml :: Time -> DateTime Source #

HasXMLImport URI URI Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => URI0 -> m URI Source #

exportXml :: URI -> URI0 Source #

HasXMLImport () SAMLVersion Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => SAMLVersion -> m () Source #

exportXml :: () -> SAMLVersion Source #

HasXMLImport Assertion (PossiblyEncrypted Assertion) Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => PossiblyEncrypted Assertion0 -> m Assertion Source #

exportXml :: Assertion -> PossiblyEncrypted Assertion0 Source #

HasXMLImport (Maybe Statement) Statement Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => Statement0 -> m (Maybe Statement) Source #

exportXml :: Maybe Statement -> Statement0 Source #

HasXMLImport (ID a) ID Source # 
Instance details

Defined in SAML2.WebSSO.XML

Methods

importXml :: MonadError String m => ID0 -> m (ID a) Source #

exportXml :: ID a -> ID0 Source #

attributeIsCI :: Name -> CI ST -> Cursor -> [Cursor] Source #

Case insensitive version fo attributeIs. NB: this is generally violating the standard (see below), but in many cases there is clearly no harm in doing so (it's hard to base an attack on being able to say `HTTP-Post` instead of `HTTP-POST`).

Details: * According to https://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf, Section 3.5.1, the binding should be "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST", but what you sent is "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Post". * According to https://tools.ietf.org/html/rfc8141, page 17, URNs are case sensitive in the position of "HTTP-Post". All SAML IdPs that wire supports, including microsoft azure, okta, and centrify are following this line of reasoning.

defNameSpaces :: [(ST, ST)] Source #

encode :: forall a. HasXMLRoot a => a -> LT Source #

decode :: forall m a. (HasXMLRoot a, MonadError String m) => LT -> m a Source #

encodeElem :: forall a. HasXML a => a -> LT Source #

decodeElem :: forall a m. (HasXML a, MonadError String m) => LT -> m a Source #

renderToDocument :: HasXMLRoot a => a -> Document Source #

parseFromDocument :: (HasXML a, MonadError String m) => Document -> m a Source #

unsafeReadTime :: HasCallStack => String -> Time Source #

Do not use this in production! It works, but it's slow and failures are a bit violent.

decodeTime :: (MonadError String m, ConvertibleStrings s String) => s -> m Time Source #

renderTime :: Time -> ST Source #

explainDeniedReason :: DeniedReason -> ST Source #

mkSPMetadata :: (Monad m, SP m) => ST -> URI -> URI -> [ContactPerson] -> m SPMetadata Source #

Construct SP metadata with a new UUID and current time stamp.

The resp argument here must match the finalize-login end-point (as can be constructed by getSsoURL).