Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Expose RelayState limiter as a public API and revisit default setting

Description

The limitRelayState function added to address is currently internal. Need to refactor this into a public API, and get the ADFS plugin patched to support it.

Also need to determine the appropriate default to use.

Environment

None

Activity

Show:

Scott Cantor February 12, 2012 at 9:07 PM

Closing with documentation written. Changing the default will break existing logout handling, leaving off.

Scott Cantor February 3, 2012 at 4:07 AM

http://svn.shibboleth.net/view/cpp-sp?rev=3572&view=rev

Properties renamed redirectLimit and redirectWhitelist with deprecation support for the old names.

Inheritance across app overrides implemented if override doesn't set the Limit property.

Added to ADFS plugin along with existing "return" and relay state handling.

Added absoluting promotion for relative "return" parameters.

Scott Cantor February 2, 2012 at 5:46 AM

Also need to revisit whether to limit/block return option during logout.

Fixed
Pinned fields
Click on the next to a field label to start pinning.

Details

Assignee

Reporter

Original estimate

Components

Fix versions

Affects versions

Created February 15, 2011 at 11:48 AM
Updated February 12, 2012 at 9:07 PM
Resolved February 3, 2012 at 4:07 AM