Uploaded image for project: 'OpenSAML - C++'
  1. OpenSAML - C++
  2. CPPOST-99

DynamicMetadataProvider rejects metadata returned from MDQ associated with artifact profile

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.0, 2.1, 2.2, 2.2.1, 2.3, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.5.0, 2.5.1, 2.5.2, 2.5.3, 2.5.4, 2.5.5, 2.6.0
    • Fix Version/s: 2.6.1
    • Component/s: Metadata
    • Labels:
      None
    • Operating System:
      Multiple
    • CPU Type:
      Multiple
    • C/C++ Compiler:
      Multiple
    • Web Server:
      Multiple

      Description

      The DynamicMetadataProvider checks that metadata returned to it has an embedded entityID matching the name that it queries. This will not be the case during the artifact profile, where the name being queried will be a SHA-1 encoded version of the entityID.

      The result is that the returned metadata is rejected with the message:

      ERROR OpenSAML.MetadataProvider.Dynamic [1]: metadata instance did not match expected entityID

      The dynamic metadata provider should instead, when processing artifact requests, check a transformed version of the returned entityID against the original name.

        Attachments

          Activity

            People

            Assignee:
            cantor.2@osu.edu Scott Cantor
            Reporter:
            ian@iay.org.uk Ian Young
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: