Skip to content

Malformed SubjectConfirmationData in Response #769

New issue
New issue
Open
Open
Malformed SubjectConfirmationData in Response#769
Labels
bug
@peppelinux

Description

@peppelinux
peppelinux
opened on Jan 24, 2021

PySAML2 doesn't validate properly SubjectConfirmationData attributes

Recipient

           <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml:SubjectConfirmationData InResponseTo="id-hz5vE07Vp9MWK9Lfq" NotOnOrAfter="2021-01-24T01:35:10Z" Recipient="diversodaassertionconsumerserviceurl"/>
            </saml:SubjectConfirmation>

NotOnAfter not valued or absent

            <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml:SubjectConfirmationData InResponseTo="id-gVE68LCdqjMKCiJdK" NotOnOrAfter="" Recipient="http://sp1.testunical.it:8000/saml2/acs/"/>
            </saml:SubjectConfirmation>

Metadata

Metadata

Assignees

No one assigned

    Labels

    bug

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions