saml2: check parameter passed to RelayState is a string (#42358)

2020-04-30 21:33:26 +02:00 · 2020-04-30 21:33:26 +02:00 · f854b0586a
parent 7f2dcad556
commit f854b0586a
1 changed files with 2 additions and 1 deletions
--- a/wcs/qommon/saml2.py
+++ b/wcs/qommon/saml2.py
@ -169,7 +169,8 @@ class Saml2Directory(Directory):
        login.request.forceAuthn = get_request().form.get('forceAuthn') == 'true'
        login.request.isPassive = get_request().form.get('IsPassive') == 'true'
        login.request.consent = 'urn:oasis:names:tc:SAML:2.0:consent:current-implicit'
-        login.msgRelayState = get_request().form.get('next')
+        if isinstance(get_request().form.get('next'), str):
+            login.msgRelayState = get_request().form.get('next')

        next_url = login.msgRelayState or get_publisher().get_frontoffice_url()
        samlp_extensions = '''<samlp:Extensions