Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-15 21:18:29 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 127
fleet/server/mdm
History
Lucas Manuel Rodriguez c69d56ed64
Replace home-made SAML implementation with https://github.com/crewjam/saml (#28486) 
For https://github.com/fleetdm/confidential/issues/9931.


[Here](ec3e8edbdc/docs/Contributing/Testing-and-local-development.md (L339))'s
how to test SAML locally with SimpleSAML.

- [X] Changes file added for user-visible changes in `changes/`,
`orbit/changes/` or `ee/fleetd-chrome/changes`.
See [Changes
files](https://github.com/fleetdm/fleet/blob/main/docs/Contributing/Committing-Changes.md#changes-files)
for more information.
- [x] Added/updated automated tests
- [x] A detailed QA plan exists on the associated ticket (if it isn't
there, work with the product group's QA engineer to add it)
- [x] Manual QA for all new/changed functionality

<!-- This is an auto-generated comment: release notes by coderabbit.ai
-->
## Summary by CodeRabbit

* **New Features**
* Improved SSO and SAML integration with enhanced session management
using secure cookies.
  * Added support for IdP-initiated login flows.
* Introduced new tests covering SSO login flows, metadata handling, and
error scenarios.

* **Bug Fixes**
* Enhanced validation and error handling for invalid or tampered SAML
responses.
  * Fixed session cookie handling during SSO and Apple MDM SSO flows.

* **Refactor**
* Replaced custom SAML implementation with the crewjam/saml library for
improved reliability.
  * Simplified SAML metadata parsing and session store management.
  * Streamlined SSO authorization request and response processing.
  * Removed deprecated fields and redundant code related to SSO.

* **Documentation**
* Updated testing and local development docs with clearer instructions
for SSO and IdP-initiated login.

* **Chores**
  * Upgraded dependencies including crewjam/saml and related packages.
* Cleaned up tests and configuration by removing deprecated fields and
unused imports.
<!-- end of auto-generated comment: release notes by coderabbit.ai -->
2025-07-07 15:13:46 -03:00
..
android Replace home-made SAML implementation with https://github.com/crewjam/saml (#28486) 2025-07-07 15:13:46 -03:00
apple Refetch host after VPP install is verified (#30546) 2025-07-03 20:52:45 -04:00
assets NDES SCEP proxy backend (#22542) 2024-10-09 13:47:27 -05:00
crypto Update nanomdm dependency with latest bug fixes and improvements. (#23906) 2024-11-20 11:47:11 -06:00
cryptoutil Refactoring crypto code for future reuse. (#25148) 2025-01-07 16:14:12 -06:00
internal/commonmdm friday tidy up party (#18106) 2024-04-08 08:42:42 -03:00
lifecycle Improve MDM device-to-user mapping for Apple devices (#29239) 2025-05-19 13:29:46 -05:00
linux Linux Encryption Docs (#23622) 2024-12-10 08:26:46 -07:00
maintainedapps Generate SHA from file if FMA sha is no_check (#30558) 2025-07-07 11:05:19 -05:00
microsoft Update windows CSP verification logic (#30203) 2025-06-24 15:18:38 -04:00
nanodep Updating golangci-lint to 1.61.0 (#22973) 2024-10-18 12:38:26 -05:00
nanomdm Skip flaky test (again) (#30495) 2025-07-01 17:26:13 -06:00
scep Add one-time challenge support to custom SCEP proxy (#29832) 2025-06-12 08:56:13 -05:00
testing_utils Add datastore methods for host certificates feature (#26416) 2025-02-18 17:49:02 -06:00
mdm.go fix: Detect file starting with comment in mdm.go as well (#27673) 2025-03-31 19:16:13 -05:00
mdm_test.go fix: Detect file starting with comment in mdm.go as well (#27673) 2025-03-31 19:16:13 -05:00