Rephrase error log lines for AuthnFailed responses

Basics

Technical

Logistics

Basics

Technical

Logistics

Description

Currently, when an IdP responds with an AuthnFailed message without an additional StatusMessage or StatusDetails, the SP writes the following line to the error log:

SAML response contained an error

This is slightly misleading in that it suggests that the SAML response XML message itself is not syntactically/semantically valid, as opposed to merely reporting that the IdP returned an error. Perhaps this error log message could be rewritten to better make the distinction. Something like:

SAML response reported an IdP error: (no message)
SAML response reported an IdP error: <StatusMessage> goes here

Environment

None

Activity

Show:

Scott Cantor December 2, 2013 at 5:06 PM

Closing on release.

Scott Cantor November 21, 2013 at 8:17 PM

http://svn.shibboleth.net/view/cpp-sp?rev=3881&view=rev

Fixed

Pinned fields

Click on the next to a field label to start pinning.

Details

Assignee

Scott Cantor

Reporter

myhandisadolphin@mailinator.com

Fix versions

2.5.3

Affects versions

2.5.2

Created November 6, 2013 at 2:58 PM

Updated December 2, 2013 at 5:06 PM

Resolved November 21, 2013 at 8:17 PM

Configure