xml: adapt schema in saml2:AuthnContext (#29340)
saml2:AuthnContext XML schema indicate that AuthenticatingAuthority is an optional unbounded list of nodes, but the current Lasso schema only handle an unique element. To prevent Lasso from refusing perfectly legal messages, we add a rule to the Lasso ignoring other nodes after the first one.
This commit is contained in:
parent
642182bdf4
commit
151ad17e04
|
@ -71,6 +71,10 @@ static struct XmlSnippet schema_snippets[] = {
|
||||||
G_STRUCT_OFFSET(LassoSaml2AuthnContext, AuthnContextDeclRef), NULL, NULL, NULL},
|
G_STRUCT_OFFSET(LassoSaml2AuthnContext, AuthnContextDeclRef), NULL, NULL, NULL},
|
||||||
{ "AuthenticatingAuthority", SNIPPET_CONTENT | SNIPPET_OPTIONAL,
|
{ "AuthenticatingAuthority", SNIPPET_CONTENT | SNIPPET_OPTIONAL,
|
||||||
G_STRUCT_OFFSET(LassoSaml2AuthnContext, AuthenticatingAuthority), NULL, NULL, NULL},
|
G_STRUCT_OFFSET(LassoSaml2AuthnContext, AuthenticatingAuthority), NULL, NULL, NULL},
|
||||||
|
/* Other AuthenticatingAuthority are just ignored, it's a work-around to at least accept correct SAML message.
|
||||||
|
* See https://dev.entrouvert.org/issues/29340 */
|
||||||
|
{ "AuthenticatingAuthority", SNIPPET_LIST_CONTENT | SNIPPET_OPTIONAL,
|
||||||
|
NULL, NULL, NULL, NULL},
|
||||||
{NULL, 0, 0, NULL, NULL, NULL}
|
{NULL, 0, 0, NULL, NULL, NULL}
|
||||||
};
|
};
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue