diff options
| author | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-08-25 19:02:22 +0200 |
|---|---|---|
| committer | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2010-08-25 19:02:22 +0200 |
| commit | 88236da2d2d23184cbd927720127dfb6da24b363 (patch) | |
| tree | 61074da552276e4415b5ef3c824e457d1bd945be | |
| parent | 3769decc5842c141ffbe6816898448f5806902be (diff) | |
| download | lasso-88236da2d2d23184cbd927720127dfb6da24b363.tar.gz lasso-88236da2d2d23184cbd927720127dfb6da24b363.tar.xz lasso-88236da2d2d23184cbd927720127dfb6da24b363.zip | |
[SAMLv2] mark Redirect binding as an invalid binding for return AuthnResponse
This is really not supported by the SAMLv2 protocol.
| -rw-r--r-- | lasso/saml-2.0/login.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/lasso/saml-2.0/login.c b/lasso/saml-2.0/login.c index 02113a42..80b98131 100644 --- a/lasso/saml-2.0/login.c +++ b/lasso/saml-2.0/login.c @@ -361,6 +361,7 @@ lasso_saml20_login_process_authn_request_msg(LassoLogin *login, const char *auth } else if (g_strcmp0(protocol_binding, LASSO_SAML2_METADATA_BINDING_REDIRECT) == 0) { login->protocolProfile = LASSO_LOGIN_PROTOCOL_PROFILE_REDIRECT; + goto_cleanup_with_rc(LASSO_PROFILE_ERROR_INVALID_PROTOCOLPROFILE); } else if (g_strcmp0(protocol_binding, LASSO_SAML2_METADATA_BINDING_PAOS) == 0) { login->protocolProfile = LASSO_LOGIN_PROTOCOL_PROFILE_BRWS_LECP; } else { |