Uploaded image for project: 'CXF'
  1. CXF
  2. CXF-4746

STS issues invalid SAML 1.1 Assertions under certain conditions

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.5.8, 2.6.5, 2.7.2
    • 2.5.9, 2.6.6, 2.7.3
    • Services
    • None
    • Unknown

    Description

      The STS issues invalid SAML 1.1 Assertions under certain conditions. Namely, if an AttributeStatementProvider (such as the ClaimsAttributeStatementProvider) is explicitly configured on the SAMLTokenProvider, but no AttributeStatement is actually added (for example, if the client doesn't present any claims).

      In this case, a SAML 1.1 Assertion can be issued with no Statements, something which is invalid according to the schema.

      Attachments

        Issue Links

          is depended upon by

          Bug - A problem which impairs or prevents the functions of the product. FEDIZ-40 Can CXF Fediz IDP & RP work with SAML1.1 ?

          • Major - Major loss of function.
          • Closed

          Activity

            People

              coheigea Colm O hEigeartaigh
              coheigea Colm O hEigeartaigh
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: