You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ws.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2015/02/09 11:59:35 UTC

[jira] [Closed] (WSS-522) Enforce security constraints on SAML AuthnStatement attributes

     [ https://issues.apache.org/jira/browse/WSS-522?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Colm O hEigeartaigh closed WSS-522.
-----------------------------------

> Enforce security constraints on SAML AuthnStatement attributes
> --------------------------------------------------------------
>
>                 Key: WSS-522
>                 URL: https://issues.apache.org/jira/browse/WSS-522
>             Project: WSS4J
>          Issue Type: Improvement
>            Reporter: Colm O hEigeartaigh
>            Assignee: Colm O hEigeartaigh
>             Fix For: 1.6.18, 2.0.3
>
>
> This task is to enforce security constraints on SAML AuthnStatement attributes. Namely, make sure that an AuthnInstant isn't in the future, that the SessionNotOnOrAfter is not stale, and that the SubjectLocality IP address is valid.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@ws.apache.org
For additional commands, e-mail: dev-help@ws.apache.org