How to install pyFF
- Download and install ActivePython
- Open Command Prompt
- Type
pypm install pyff
Lastest release
python SAML metadata aggregator
This is a SAML metadata aggregator written in python. It is based on the model for metadata exchange by Ian Young: http://iay.org.uk/blog/2008/10/metadata_interc.html
Features
- Pluggable "pipelines" for processing SAML metadata
- Signature validation and creation
- Support for using PKCS#11 tokens for signing
- Certificate expiration checking and reporting
- Fast parallel fetching of multiple streams
Dependencies
- pyXMLSecurity
- PyKCS11 (optional)
News
0.1
Release date: UNRELEASED
- This is the first unreleased version of the code
- http://github.com/leifj/pyFF
0.4
Release date: Tue Jul 10 15:48:07 CEST 2012
- Schema validation
- Refactor dynamic loading framework
0.5
Release date: Wed Jul 11 16:31:06 CEST 2012
- XML signing and validation using http://pypi.python.org/pypi/dm.xmlsec.binding (requires M2Crypto at present)
Because of the way OpenSSL handles self-signed certificates the XML validation extracts the public key from the certificate and uses that instead of the X509 certificate to validate an XML signature. Right now this introduces a dependency on M2Crypto which will be removed in the fugure. Note that ubuntu/debian users should install python-m2crypto instead of installing M2Crypto (http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=637904)
0.6
Release date: Thu Aug 30 08:00:00 CEST 2012
- XML signing and validation using pyXMLSecurity
- Support for PKCS#11-based HSMs using pykcs11
We are now using a (limited) pure-python implmementation of xmlsec which makes it easier to sign using HSMs. The only mandatory non-python dependency now is lxml.
0.7
Release date: Fri Sep 7 10:13:33 CEST 2012
- support breaking out of pipelines using exceptions
- kill the pipeline if selects picks 0 elements
- more debug logging
- more robust handling of zero-length selectors
- completely remove pyOpenSSL dependency
- many bugfixes and cleanup
0.8
Release date: Fri Nov 30 09:37:59 CET 2012
- HTTP-based pyffd with MDX support
- several bugfixes
- indexing in MDRepository
- completely rewritten URL fetcher with monitoring
0.9 and 0.9.1
Release date: Tue Apr 9 18:03:13 CEST 2013
- Lots of bugfixes
- pep8 cleanup
- stability & testcases
0.9.2
- Release date: Mon Apr 15 13:19:14 CEST 2013*
- caching in pyffd now works
- version information on cmdline
- 'remove' merge strategy from Peter S
- cleanup & bugfixes
0.9.3
- Release date: Wed May 15 12:09:57 CEST 2013*
- better discovery UI