Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
1.6
-
Eclipse, Maven, Tomcat
Description
As per the saml2 core specification, Authentication Statement can have an optional SubjectLocality as defined in the saml xsd below:
<complexType name="AuthnStatementType">
<complexContent>
<extension base="saml:StatementAbstractType">
<sequence>
<element ref="saml:SubjectLocality" minOccurs="0" />
<element ref="saml:AuthnContext" />
</sequence>
<attribute name="AuthnInstant" type="dateTime" use="required" />
<attribute name="SessionIndex" type="string" use="optional" />
<attribute name="SessionNotOnOrAfter" type="dateTime" use="optional" />
</extension>
</complexContent>
</complexType>
But, AuthenticationStatementBean does not have the SubjectLocalityBean.
Please find the attached SubjectLocalityBean, as well as the AuthenticationStatementBean updated with the SubjectLocalityBean.
Example:
<saml2:AuthnStatement AuthnInstant="2009-04-16T13:10:39.093Z">
<saml2:SubjectLocality Address="11.01.124.22"
DNSName="test"></saml2:SubjectLocality>
<saml2:AuthnContext>
<saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:X509
</saml2:AuthnContextClassRef>
</saml2:AuthnContext>
</saml2:AuthnStatement>