diff options
| author | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-02-17 10:14:43 +0000 |
|---|---|---|
| committer | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-02-17 10:14:43 +0000 |
| commit | 017ebd33f9db4042c0618c47a929a50337129aba (patch) | |
| tree | 201e6722e825b279742d65205605fb4766e34d69 | |
| parent | b13ddc086bb610f537805a5628d89f0d6b72742c (diff) | |
SAML 2.0: make lasso_saml2_assertion_validate_conditions really work
| -rw-r--r-- | lasso/saml-2.0/saml2_helper.c | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/lasso/saml-2.0/saml2_helper.c b/lasso/saml-2.0/saml2_helper.c index 9d4d3bf5..9054d0a0 100644 --- a/lasso/saml-2.0/saml2_helper.c +++ b/lasso/saml-2.0/saml2_helper.c @@ -420,11 +420,11 @@ lasso_saml2_assertion_validate_conditions(LassoSaml2Assertion *saml2_assertion, lasso_foreach_full_begin (LassoSaml2AudienceRestriction*, saml2_audience_restriction, it, saml2_conditions->AudienceRestriction) did_audience = TRUE; - if (g_strcmp0(saml2_audience_restriction->Audience, relaying_party_providerID)) { + if (g_strcmp0(saml2_audience_restriction->Audience, relaying_party_providerID) == 0) { found_audience = TRUE; } lasso_foreach_full_end() - if (did_audience ^ found_audience) { + if (did_audience && ! found_audience) { return LASSO_SAML2_ASSERTION_INVALID; } |