diff options
author | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2009-06-15 12:27:50 +0000 |
---|---|---|
committer | Benjamin Dauvergne <bdauvergne@entrouvert.com> | 2009-06-15 12:27:50 +0000 |
commit | 8841328655f2342c3637186e7611e8eb6c70472b (patch) | |
tree | 9324d335956aa63c1875f94c66c170afd5ad7d37 | |
parent | b48323a2a029ff636afa44c31e3a397d1db326f3 (diff) | |
download | lasso-8841328655f2342c3637186e7611e8eb6c70472b.tar.gz lasso-8841328655f2342c3637186e7611e8eb6c70472b.tar.xz lasso-8841328655f2342c3637186e7611e8eb6c70472b.zip |
Do not remove signatures on assertion when using HTTP Redirect
* lasso/saml-2.0/profile.c:
HTTP Redirect binding mandate to remove signature at the SAML message
level, but signatures at the assertion, especially if the SP asked for
it, must be preserved.
-rw-r--r-- | lasso/saml-2.0/profile.c | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/lasso/saml-2.0/profile.c b/lasso/saml-2.0/profile.c index 2ea43dcf..3bc4d7be 100644 --- a/lasso/saml-2.0/profile.c +++ b/lasso/saml-2.0/profile.c @@ -47,7 +47,7 @@ #include "../debug.h" static char* lasso_saml20_profile_build_artifact(LassoProvider *provider); -static void remove_all_signatures(LassoNode *node); +G_GNUC_UNUSED static void remove_all_signatures(LassoNode *node); static char * lasso_saml20_profile_export_to_query(LassoProfile *profile, LassoNode *msg, int sign); /* @@ -1112,7 +1112,6 @@ lasso_saml20_profile_build_http_redirect(LassoProfile *profile, return critical_error(LASSO_PROFILE_ERROR_UNKNOWN_PROFILE_URL); } /* No signature on the XML message */ - remove_all_signatures(msg); query = lasso_saml20_profile_export_to_query(profile, msg, must_sign); lasso_assign_new_string(profile->msg_url, lasso_concat_url_query(url, query)); lasso_release(profile->msg_body); |