From d67411932f4642b32d2c96addb3ecb5bdcc37dae Mon Sep 17 00:00:00 2001
From: Emmanuel Raviart <eraviart@entrouvert.com>
Date: Sat, 2 Oct 2004 08:59:54 +0000
Subject: Removed consent from fake authnRequest created by
 lasso_login_process_without_authn_request_msg: Since the nameIDPolicy is
 "any", must_ask_for_consent must return true and if the user doesn't give its
 consent, a one-time nameidentifier should be used.

---
 lasso/id-ff/login.c | 2 --
 1 file changed, 2 deletions(-)

diff --git a/lasso/id-ff/login.c b/lasso/id-ff/login.c
index b075f66b..6edcc1fe 100644
--- a/lasso/id-ff/login.c
+++ b/lasso/id-ff/login.c
@@ -1437,8 +1437,6 @@ lasso_login_process_without_authn_request_msg(LassoLogin  *login,
   request = lasso_authn_request_new(LASSO_PROFILE(login)->remote_providerID,
 				    lassoSignatureTypeNone, 0);
 
-  lasso_lib_authn_request_set_consent(LASSO_LIB_AUTHN_REQUEST(request),
-				      lassoLibConsentObtained);
   lasso_lib_authn_request_set_isPassive(LASSO_LIB_AUTHN_REQUEST(request), FALSE);
   lasso_lib_authn_request_set_nameIDPolicy(LASSO_LIB_AUTHN_REQUEST(request),
 					   lassoLibNameIDPolicyTypeAny);
-- 
cgit