[SAMLv2] mark Redirect binding as an invalid binding for return AuthnResponse

This is really not supported by the SAMLv2 protocol.
2010-08-25 19:02:22 +02:00 · 2010-08-25 19:02:22 +02:00 · 88236da2d2
parent 3769decc58
commit 88236da2d2
1 changed files with 1 additions and 0 deletions
--- a/lasso/saml-2.0/login.c
+++ b/lasso/saml-2.0/login.c
@ -361,6 +361,7 @@ lasso_saml20_login_process_authn_request_msg(LassoLogin *login, const char *auth
 		} else if (g_strcmp0(protocol_binding,
 					LASSO_SAML2_METADATA_BINDING_REDIRECT) == 0) {
 			login->protocolProfile = LASSO_LOGIN_PROTOCOL_PROFILE_REDIRECT;
+			goto_cleanup_with_rc(LASSO_PROFILE_ERROR_INVALID_PROTOCOLPROFILE);
 		} else if (g_strcmp0(protocol_binding, LASSO_SAML2_METADATA_BINDING_PAOS) == 0) {
 			login->protocolProfile = LASSO_LOGIN_PROTOCOL_PROFILE_BRWS_LECP;
 		} else {