Shibboleth SP - C++
  1. Shibboleth SP - C++
  2. SSPCPP-244

ADFS SessionInitiator doesn't raise proper error when ACS is wrong

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: 2.2.1
    • Fix Version/s: 2.3
    • Component/s: ADFS
    • Labels:
      None
    • Environment:
      CentOS 5 with RPMs
    • Operating System:
      Linux
    • Web Server:
      Apache 2.2
    • CPU Type:
      Multiple
    • C/C++ Compiler:
      Multiple

      Description

      The ADFS initiator by itself isn't handling the case of a bogus ACS calculation correctly, and just falls into code that shouldn't run.

      Also, the new code added with 2.2.1 to do binding checks on the ACS created a regression that makes it necessary to define a defaultACSIndex property since it doesn't auto-derive the ACS based on binding any more. Need to revisit this logic.

        Activity

        Hide
        Scott Cantor added a comment -
        The "fall through" bug affects all the other protocol handlers as well, and was introduced with the fix to check the ACS binding against the protocol to prevent mixing of protocols.
        Show
        Scott Cantor added a comment - The "fall through" bug affects all the other protocol handlers as well, and was introduced with the fix to check the ACS binding against the protocol to prevent mixing of protocols.
        Show
        Scott Cantor added a comment - http://svn.middleware.georgetown.edu/view/cpp-sp?view=rev&revision=3149

          People

          • Assignee:
            Scott Cantor
            Reporter:
            Scott Cantor
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: