[CXF-5277] ConditionsProvider receives limited information from SAMLTokenRenewer - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.7.6
Fix Version/s: 2.6.10, 2.7.7
Component/s: STS
Labels:
None

Estimated Complexity:
Unknown

Description

The ConditionsProvider receives only the appliesToAddress and lifetime when called from SAMLTokenRenewer. This is in contrast to issue operations where the full TokenProviderParameters is passed. This makes it difficult to calculate conditions based on other attributes of the request. For example, a ConditionsProvider implementation may wish to restrict renewals to a limited time period based on the AuthnInstant attribute of an AuthnStatement in the assertion being renewed.

If the full TokenRenewerParamters were passed instead then the necessary information would be available to perform more complex calculations.

Attachments

Activity

People

Assignee:: Colm O hEigeartaigh

Reporter:: Ethan Wallwork

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 12/Sep/13 18:49

Updated:: 27/Sep/13 18:18

Resolved:: 13/Sep/13 13:59