You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by co...@apache.org on 2016/01/18 16:28:55 UTC
cxf git commit: Only create the TokenReplayCache if it is required

Repository: cxf
Updated Branches:
  refs/heads/master 6c7cbe317 -> 2d5bc09bd


Only create the TokenReplayCache if it is required


Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/2d5bc09b
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/2d5bc09b
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/2d5bc09b

Branch: refs/heads/master
Commit: 2d5bc09bdff68241e6f597ea2a5de85f969b8619
Parents: 6c7cbe3
Author: Colm O hEigeartaigh <co...@apache.org>
Authored: Mon Jan 18 15:28:40 2016 +0000
Committer: Colm O hEigeartaigh <co...@apache.org>
Committed: Mon Jan 18 15:28:40 2016 +0000

----------------------------------------------------------------------
 .../saml/sso/AbstractRequestAssertionConsumerHandler.java        | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf/blob/2d5bc09b/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/AbstractRequestAssertionConsumerHandler.java
----------------------------------------------------------------------
diff --git a/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/AbstractRequestAssertionConsumerHandler.java b/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/AbstractRequestAssertionConsumerHandler.java
index 2de61ae..3c110a1 100644
--- a/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/AbstractRequestAssertionConsumerHandler.java
+++ b/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/AbstractRequestAssertionConsumerHandler.java
@@ -317,7 +317,9 @@ public abstract class AbstractRequestAssertionConsumerHandler extends AbstractSS
             ssoResponseValidator.setEnforceAssertionsSigned(enforceAssertionsSigned);
             ssoResponseValidator.setEnforceResponseSigned(enforceResponseSigned);
             ssoResponseValidator.setEnforceKnownIssuer(enforceKnownIssuer);
-            ssoResponseValidator.setReplayCache(getReplayCache());
+            if (postBinding) {
+                ssoResponseValidator.setReplayCache(getReplayCache());
+            }
 
             return ssoResponseValidator.validateSamlResponse(samlResponse, postBinding);
         } catch (WSSecurityException ex) {