lasso.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Benjamin Dauvergne <bdauvergne@entrouvert.com>	2010-10-06 10:40:14 +0200
committer	Benjamin Dauvergne <bdauvergne@entrouvert.com>	2010-10-06 17:00:52 +0200
commit	5d56e4558eba80b6cffb79797fe124ad90199632 (patch)
tree	184deda8fa1a2e3c87dbf8cca2a5f07083005bfa /bindings/python/tests/tests.py
parent	58a3868361ba63d51d5c0f802d3b7d2a9a8ae376 (diff)
download	lasso-5d56e4558eba80b6cffb79797fe124ad90199632.tar.gz lasso-5d56e4558eba80b6cffb79797fe124ad90199632.tar.xz lasso-5d56e4558eba80b6cffb79797fe124ad90199632.zip

[ID-FFv1.2] in lasso_login_process_authn_request_msg() adopt simpler behaviour for checking signatures

There is two sources of advice for signature checking: AuthnRequestsSigned attribute in service provider metadata files and value of lasso_profile_get_signature_verify_hint(). If lasso_profile_get_signature_verify_hint() forbid to check signature, we do not check. If the SP advise to check signature, we check. If lasso_profile_get_signature_verify_hint() forces to check signature, we do not check. In all other cases we only check if a signature is present, i.e. we ignore the error LASSO_DS_ERROR_SIGNATURE_NOT_FOUND.

Diffstat (limited to 'bindings/python/tests/tests.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: