In lasso_saml20_login_process_response_status_and_assertion does not overwirte signature_status with rc which is always at 0 (#54689)
We are losing information in this case, like if the response was not signed.
This commit is contained in:
parent
2d78634827
commit
16148102e5
|
@ -1484,11 +1484,6 @@ lasso_saml20_login_process_response_status_and_assertion(LassoLogin *login)
|
||||||
last_assertion = assertion;
|
last_assertion = assertion;
|
||||||
lasso_foreach_full_end();
|
lasso_foreach_full_end();
|
||||||
|
|
||||||
/* set the profile signature status only after all the signatures are
|
|
||||||
* verified.
|
|
||||||
*/
|
|
||||||
profile->signature_status = rc;
|
|
||||||
|
|
||||||
/* set the default assertion to the last one */
|
/* set the default assertion to the last one */
|
||||||
if (last_assertion) {
|
if (last_assertion) {
|
||||||
lasso_assign_gobject (login->private_data->saml2_assertion, last_assertion);
|
lasso_assign_gobject (login->private_data->saml2_assertion, last_assertion);
|
||||||
|
|
Loading…
Reference in New Issue