diff options
| author | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-06-06 14:03:49 +0000 |
|---|---|---|
| committer | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-06-06 14:03:49 +0000 |
| commit | 64dd61b1a8e09cf2f12caf0d0d0a2d0937d8a5fe (patch) | |
| tree | 87450543bc8d017036a6f9f5854ee5a9c9477cf2 | |
| parent | b7e2f36e671434efd981b4de9b98d9521f725c47 (diff) | |
| download | lasso-64dd61b1a8e09cf2f12caf0d0d0a2d0937d8a5fe.tar.gz lasso-64dd61b1a8e09cf2f12caf0d0d0a2d0937d8a5fe.tar.xz lasso-64dd61b1a8e09cf2f12caf0d0d0a2d0937d8a5fe.zip | |
ID-FFv1.2: for idp initiated sso accept any nameIdPolicy
* IdP initiated SSO can be of any kind, no need to limit it.
| -rw-r--r-- | lasso/id-ff/login.c | 7 |
1 files changed, 0 insertions, 7 deletions
diff --git a/lasso/id-ff/login.c b/lasso/id-ff/login.c index 5d47ca40..4a9c8466 100644 --- a/lasso/id-ff/login.c +++ b/lasso/id-ff/login.c @@ -1925,13 +1925,6 @@ lasso_login_process_authn_request_msg(LassoLogin *login, const char *authn_reque /* LibAuthnRequest already set by lasso_login_init_idp_initiated_authn_request() */ request = LASSO_LIB_AUTHN_REQUEST(profile->request); - - /* verify that NameIDPolicy is 'any' */ - if (request->NameIDPolicy == NULL) - return LASSO_LOGIN_ERROR_INVALID_NAMEIDPOLICY; - - if (strcmp(request->NameIDPolicy, LASSO_LIB_NAMEID_POLICY_TYPE_ANY) != 0) - return LASSO_LOGIN_ERROR_INVALID_NAMEIDPOLICY; } else { request = lasso_lib_authn_request_new(); format = lasso_node_init_from_message(LASSO_NODE(request), authn_request_msg); |