only set samlp:Success in samlp:Response if assertion was found; fall back to
samlp:RequestDenied in other cases since there is currently no way to be more precise.
This commit is contained in:
parent
775d109536
commit
75abeb989c
|
@ -713,6 +713,8 @@ lasso_login_build_response_msg(LassoLogin *login, gchar *remote_providerID)
|
||||||
profile = LASSO_PROFILE(login);
|
profile = LASSO_PROFILE(login);
|
||||||
|
|
||||||
profile->response = lasso_samlp_response_new();
|
profile->response = lasso_samlp_response_new();
|
||||||
|
/* XXX: should set status code to what we would have set in
|
||||||
|
* lib:AuthnResponse in lasso_login_validate_request() */
|
||||||
LASSO_SAMLP_RESPONSE_ABSTRACT(profile->response)->sign_type = LASSO_SIGNATURE_TYPE_WITHX509;
|
LASSO_SAMLP_RESPONSE_ABSTRACT(profile->response)->sign_type = LASSO_SIGNATURE_TYPE_WITHX509;
|
||||||
LASSO_SAMLP_RESPONSE_ABSTRACT(profile->response)->sign_method =
|
LASSO_SAMLP_RESPONSE_ABSTRACT(profile->response)->sign_method =
|
||||||
LASSO_SIGNATURE_METHOD_RSA_SHA1;
|
LASSO_SIGNATURE_METHOD_RSA_SHA1;
|
||||||
|
@ -742,6 +744,8 @@ lasso_login_build_response_msg(LassoLogin *login, gchar *remote_providerID)
|
||||||
if (assertion) {
|
if (assertion) {
|
||||||
LASSO_SAMLP_RESPONSE(profile->response)->Assertion =
|
LASSO_SAMLP_RESPONSE(profile->response)->Assertion =
|
||||||
g_object_ref(assertion);
|
g_object_ref(assertion);
|
||||||
|
lasso_profile_set_response_status(profile,
|
||||||
|
LASSO_SAML_STATUS_CODE_SUCCESS);
|
||||||
} else {
|
} else {
|
||||||
/* FIXME should this message output by
|
/* FIXME should this message output by
|
||||||
* lasso_session_get_assertion () ? */
|
* lasso_session_get_assertion () ? */
|
||||||
|
|
|
@ -142,7 +142,7 @@ lasso_samlp_response_new()
|
||||||
/* Add Status */
|
/* Add Status */
|
||||||
status = LASSO_SAMLP_STATUS(lasso_samlp_status_new());
|
status = LASSO_SAMLP_STATUS(lasso_samlp_status_new());
|
||||||
status_code = LASSO_SAMLP_STATUS_CODE(lasso_samlp_status_code_new());
|
status_code = LASSO_SAMLP_STATUS_CODE(lasso_samlp_status_code_new());
|
||||||
status_code->Value = LASSO_SAML_STATUS_CODE_SUCCESS;
|
status_code->Value = LASSO_SAML_STATUS_CODE_REQUEST_DENIED;
|
||||||
status->StatusCode = status_code;
|
status->StatusCode = status_code;
|
||||||
LASSO_SAMLP_RESPONSE(response)->Status = status;
|
LASSO_SAMLP_RESPONSE(response)->Status = status;
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue