From 7386dc8189c25ee3654b9b3c41981c768c8eac5b Mon Sep 17 00:00:00 2001
From: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date: Thu, 30 Sep 2010 10:58:18 +0200
Subject: [PATCH] [SAMLv2] when NidPolicy->Format is NULL or unspecified,
 return transient

Add more default cases.
---
 lasso/saml-2.0/login.c | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/lasso/saml-2.0/login.c b/lasso/saml-2.0/login.c
index 38209005..8ca47e7f 100644
--- a/lasso/saml-2.0/login.c
+++ b/lasso/saml-2.0/login.c
@@ -781,7 +781,10 @@ lasso_saml20_login_build_assertion(LassoLogin *login,
 		name_id_policy = authn_request->NameIDPolicy;
 	}
 	/* TRANSIENT */
-	if (!name_id_policy || g_strcmp0(name_id_policy->Format,
+	if (!name_id_policy || name_id_policy->Format == NULL ||
+			g_strcmp0(name_id_policy->Format,
+				LASSO_SAML2_NAME_IDENTIFIER_FORMAT_UNSPECIFIED) ||
+			g_strcmp0(name_id_policy->Format,
 				LASSO_SAML2_NAME_IDENTIFIER_FORMAT_TRANSIENT) == 0) {
 		char *id = lasso_build_unique_id(32);