summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--lasso/id-wsf/wsf_profile.c14
1 files changed, 9 insertions, 5 deletions
diff --git a/lasso/id-wsf/wsf_profile.c b/lasso/id-wsf/wsf_profile.c
index 419c36f0..7f82392f 100644
--- a/lasso/id-wsf/wsf_profile.c
+++ b/lasso/id-wsf/wsf_profile.c
@@ -461,17 +461,21 @@ lasso_wsf_profile_verify_saml_authentication(LassoWsfProfile *profile)
if (!credential)
return -1;
+ /* FIXME: Verify credential signature (supposed to be signed by IDP) */
+
/* Authentication Statement */
authentication_statement = credential->AuthenticationStatement;
subject = LASSO_SAML_SUBJECT_STATEMENT_ABSTRACT(authentication_statement)->Subject;
name_identifier = subject->NameIdentifier;
- subject_confirmation = subject->SubjectConfirmation;
- if (subject_confirmation) {
- /* TODO: Get public key value */
- }
+ if (!subject->SubjectConfirmation)
+ return -1;
+ if (!subject_confirmation->KeyInfo)
+ return -1;
+
+ key_value = subject_confirmation->KeyInfo->KeyValue;
- /* ResourceStatement */
+ /* FIXME: verify soap request signature with embedded public key */
return 0;
}
generated by cgit (git 2.34.1) at 2024-07-04 15:11:45 +0000