Details
Description
The STS issues invalid SAML 1.1 Assertions under certain conditions. Namely, if an AttributeStatementProvider (such as the ClaimsAttributeStatementProvider) is explicitly configured on the SAMLTokenProvider, but no AttributeStatement is actually added (for example, if the client doesn't present any claims).
In this case, a SAML 1.1 Assertion can be issued with no Statements, something which is invalid according to the schema.
Attachments
Issue Links
- is depended upon by
-
FEDIZ-40 Can CXF Fediz IDP & RP work with SAML1.1 ?
- Closed