Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-1572

SAML login flow not extracting request ID for InResponseTo check

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.0.0-beta1, 4.0.0-beta2
    • Fix Version/s: 4.0.0
    • Component/s: Authentication, SAML2
    • Labels:
      None

      Description

      The InResponseTo check in the assertion validation step in the proxy flow is failing by default because I hadn't created a SAMLMessageInfoContext on the outbound side.

      I think the expedient fix there based on how that context works is just to slap an autocreate on the child context lookup in the default function that pulls out the request ID.

        Attachments

          Activity

            People

            Assignee:
            putmanb@shibboleth.net Brent Putman
            Reporter:
            cantor.2@osu.edu Scott Cantor
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - Not Specified
                Not Specified
                Logged:
                Time Spent - 15 minutes
                15m