You are viewing a plain text version of this content. The canonical link for it is here.
Posted to rampart-dev@ws.apache.org by "Thilina Buddhika (JIRA)" <ji...@apache.org> on 2010/02/18 09:46:27 UTC
[jira] Updated: (RAMPART-285) Interoporability issues in SAML 2.0
implementation
[ https://issues.apache.org/jira/browse/RAMPART-285?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Thilina Buddhika updated RAMPART-285:
-------------------------------------
Attachment: rampart-interop.patch
A patch which solves the above issue is attached herewith.
> Interoporability issues in SAML 2.0 implementation
> --------------------------------------------------
>
> Key: RAMPART-285
> URL: https://issues.apache.org/jira/browse/RAMPART-285
> Project: Rampart
> Issue Type: Bug
> Components: rampart-trust
> Reporter: Thilina Buddhika
> Assignee: Ruchith Udayanga Fernando
> Attachments: rampart-interop.patch
>
>
> In the current SAML 2.0 implementation, there are two places which cause some interoperability issues with other implementations.
>
> 1. It should use generic SubjectConfirmationElement when processing the assertion.
> 2. Attributes "NotBefore" and "NotOnOrAfter" should be set in a Conditions element. Currently it is set in the SubjectConfirmationData element, which defines validity period only for the Subject element, not the entire assertion.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.