entrouvert
/
lasso
16
0
Fork 0
Code Issues Pull Requests Releases Activity

ID-WSF 2.0: also check sender match assertion in lasso_idwsf2_profile_check_security_mechanism 

* lasso/id-wsf-2.0/profile.c:
   for BEARER mechanism, also check that the SPNameQualifier of the
   Subject match the Sender of the request.
This commit is contained in:
Benjamin Dauvergne 2010-02-17 16:08:33 +00:00
parent 87ecc1c682
commit 60a0ab874a
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
lasso/id-wsf-2.0/profile.c
View File

@ -406,6 +406,7 @@ lasso_idwsf2_profile_check_security_mechanism(LassoIdWsf2Profile *profile,
lasso_security_mech_id_is_bearer_authentication(security_mech_id)) {
LassoSaml2Assertion *assertion;
LassoProvider *issuer;
char *provider_id;
assertion = lasso_soap_envelope_get_saml2_security_token (envelope);
if (assertion == NULL)
@ -417,6 +418,15 @@ lasso_idwsf2_profile_check_security_mechanism(LassoIdWsf2Profile *profile,
goto cleanup;
if (lasso_provider_verify_single_node_signature(issuer, (LassoNode*)assertion, "ID") != 0)
goto cleanup;
/* check that the SPQualifier of the assertion is the same as the sender header */
provider_id = lasso_soap_envelope_sb2_get_provider_id(envelope);
if (! provider_id)
goto cleanup;
if (! assertion || ! assertion->Subject || ! assertion->Subject->NameID
|| ! assertion->Subject->NameID->SPNameQualifier)
goto cleanup;
if (g_strcmp0(provider_id, assertion->Subject->NameID->SPNameQualifier) != 0)
goto cleanup;
} else {
message(G_LOG_LEVEL_WARNING, "Only Bearer mechanism is supported!");
rc = LASSO_ERROR_UNIMPLEMENTED;