Ticket #1 (new defect)

Opened 9 months ago

Last modified 8 months ago

Difference between LASSO and SAML 1.1 spec

Reported by: bdauvergne Assigned to: fpeters
Priority: major Milestone: 2.2
Component: lasso Version: 2.1.1
Severity: spec nonconformance Keywords:
Cc:

Description

Imported from GForge BTS: Sent by Benoit Bailleux: Into trunk/lasso/xml/lib_logout_request.c, I see that, during the init (init_from_query(...) method) process, LASSO checks that :

  • ProviderID
  • NameIdentifier->content

and

  • NameIdentifier->Format

are all not NULL.

But the SAML 1.1 spec states that Format is optional. So, a SP not providing that attribute will see its request rejected.

Am I missing something, or is there an error in the code ?

NB : The spec say (line 643) :

"If the Format attribute is not included, the identifier urn:oasis:names:tc:SAML:1.0:nameid-format:unspecified (see Section 7.3.1) is in effect."

Attachments

Change History

11.03.2008 11:16:10 changed by fpeters

  • owner changed from bdauvergne to fpeters.
  • component changed from bindings to lasso.

Add/Change #1 (Difference between LASSO and SAML 1.1 spec)




Change Properties
Action