blob: e56a31b96bfe8fbaefdf699d4d2e91de097177e1 [file] [view]
<!--
SPDX-License-Identifier: Apache-2.0
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
https://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
-->
# Agent Guide for Apache CXF Fediz
This file is read by automated agents (security scanners, code analyzers,
AI assistants) operating on this repository. It points them at the
human-authored references they should consult before producing output.
## Security
Security model: [SECURITY.md](./SECURITY.md) -> [THREAT_MODEL.md](./THREAT_MODEL.md)
Agents that scan this repository should consult `SECURITY.md` and the linked
`THREAT_MODEL.md` before reporting issues. Fediz is a WS-Federation / SAML-SSO
system: the security pivot is SAML token validation at the Relying-Party plugin
(signature against a trusted IdP cert, audience/wtrealm, Conditions/timestamps,
replay, anti-signature-wrapping) and token issuance at the IdP (reply-URL
allow-listing, login CSRF/throttling). The token travels through the untrusted
browser, so most properties are about validating it.