Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

normalize signature line endings before loading signature block to xml-crypto #512

Merged
merged 1 commit into from
Dec 17, 2020
Merged

normalize signature line endings before loading signature block to xml-crypto #512

merged 1 commit into from
Dec 17, 2020

Conversation

mhassan1
Copy link
Contributor

Description

Resolves #511

Checklist:

  • Issue Addressed: [X]
  • Link to SAML spec: [ ]
  • Tests included? [X]
  • Documentation updated? [ ]

mhassan1
mhassan1 commented Dec 11, 2020
View reviewed changes
test/test-signatures.js Outdated Show resolved Hide resolved
cjbarth
cjbarth requested changes Dec 14, 2020
View reviewed changes
test/test-signatures.js Outdated Show resolved Hide resolved
@mhassan1 mhassan1 requested a review from cjbarth December 15, 2020 03:08
@mhassan1
Copy link
Contributor Author

@cjbarth Is there anything I can do to help get this merged? What is your expectation on a release timeline?

@cjbarth cjbarth merged commit 915b31d into node-saml:master Dec 17, 2020
@cjbarth
Copy link
Collaborator

cjbarth commented Dec 17, 2020
edited
Loading

@mhassan1 We don't have a release timeline. It is nice when people can use the specific commit in their package.json to test the latest code. After a period of stability, we'll typically cut a release. @markstos has been doing a lot of the releases, and I like lots of eyes on security stuff, so Iet's wait for his thoughts on this matter.

@markstos
Copy link
Contributor

This looks good to me. @cjbarth I'm fairly fair behind on my passport-saml mail at this point.

If you want to go ahead cut the next the release that's fine with me. I believe you have NPM publish rights.

@mhassan1
Copy link
Contributor Author

@cjbarth Are you planning a new release? One problem with pointing to a specific commit is that the compiled JS is not checked in, so we would need to build the project ourselves.

@cjbarth
Copy link
Collaborator

cjbarth commented Dec 21, 2020

Some recent changes that we made should cause a compilation when it is installed using a specific commit. Is that not working?

@mhassan1
Copy link
Contributor Author

How should that work? Which recent change? We are using yarn v2, which will run a postinstall step, if it exists, but this package doesn't have one (and that's discouraged just for the purpose of compilation).

@mhassan1
Copy link
Contributor Author

Oh, I see the prepare script. I would still rather point to an NPM dist if you are planning to cut a release in the next few days. Are you planning to? If not, please let me know so I can plan accordingly.

@dependabot dependabot bot mentioned this pull request Mar 17, 2021
Closed
@cjbarth cjbarth mentioned this pull request May 10, 2021
Merged
@cjbarth cjbarth added chore Refactoring, etc. to keep code-rot in check. bug and removed chore Refactoring, etc. to keep code-rot in check. labels May 13, 2021
@harrdou harrdou mentioned this pull request Apr 9, 2023
Open
@devsmart devsmart mentioned this pull request Apr 9, 2023
Open
@snyk-bot snyk-bot mentioned this pull request May 6, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cjbarth cjbarth cjbarth approved these changes

Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[BUG] Signature calculation is inconsistent for different line endings
3 participants
@mhassan1 @cjbarth @markstos