You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by bu...@apache.org on 2020/02/20 10:27:00 UTC
[cxf-fediz] branch master updated: fediz-systests-oidc: enable
logout address validation
This is an automated email from the ASF dual-hosted git repository.
buhhunyx pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/cxf-fediz.git
The following commit(s) were added to refs/heads/master by this push:
new fa20663 fediz-systests-oidc: enable logout address validation
fa20663 is described below
commit fa206639bd47d331349e266b7dee714ada637b10
Author: Alexey Markevich <bu...@gmail.com>
AuthorDate: Thu Feb 20 13:26:17 2020 +0300
fediz-systests-oidc: enable logout address validation
---
systests/oidc/src/test/resources/realma/entities-realma.xml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/systests/oidc/src/test/resources/realma/entities-realma.xml b/systests/oidc/src/test/resources/realma/entities-realma.xml
index f0c94fa..b6b9146 100644
--- a/systests/oidc/src/test/resources/realma/entities-realma.xml
+++ b/systests/oidc/src/test/resources/realma/entities-realma.xml
@@ -37,7 +37,6 @@
<property name="idpUrl" value="https://localhost:${idp.https.port}/fediz-idp/federation" />
<property name="rpSingleSignOutConfirmation" value="false"/>
<property name="automaticRedirectToRpAfterLogout" value="true"/>
- <property name="disableLogoutAddressValidation" value="true"/>
<property name="supportedProtocols">
<util:list>
<value>http://docs.oasis-open.org/wsfed/federation/200706</value>
@@ -106,8 +105,8 @@
<property name="role" value="ApplicationServiceType" />
<property name="tokenType" value="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0" />
<property name="lifeTime" value="3600" />
- <property name="passiveRequestorEndpointConstraint"
- value="https://localhost:(\d)*/(\w)*helloworld(\w)*/secure/.*" />
+ <property name="passiveRequestorEndpointConstraint" value="https://localhost:?(\d)*/.*" />
+ <property name="logoutEndpointConstraint" value="https://localhost:?(\d)*/.*" />
</bean>
<bean id="srv-oidc" class="org.apache.cxf.fediz.service.idp.service.jpa.ApplicationEntity">
@@ -119,6 +118,7 @@
<property name="tokenType" value="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0" />
<property name="lifeTime" value="3600" />
<property name="passiveRequestorEndpointConstraint" value="https://localhost:?(\d)*/fediz-oidc.*/.*" />
+ <property name="logoutEndpointConstraint" value="https://localhost:?(\d)*/.*" />
</bean>
<bean class="org.apache.cxf.fediz.service.idp.service.jpa.ApplicationClaimEntity">