From e109756cf5958cb1392455f89dc3570c0ea87f01 Mon Sep 17 00:00:00 2001 From: Benjamin Dauvergne Date: Sat, 1 May 2010 05:40:34 +0000 Subject: Change

tags to --- lasso/id-ff/login.c | 4 ++-- lasso/id-wsf-2.0/soap_binding.c | 16 ++++++++-------- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/lasso/id-ff/login.c b/lasso/id-ff/login.c index f36062f6..5d47ca40 100644 --- a/lasso/id-ff/login.c +++ b/lasso/id-ff/login.c @@ -206,12 +206,12 @@ * * * - *

The implement an IdP you must create a single sign-on service endpoint, the needed APIs for + * The implement an IdP you must create a single sign-on service endpoint, the needed APIs for * this are lasso_login_process_authn_request_msg(), lasso_login_validate_request_msg(), * lasso_login_build_assertion(), lasso_login_build_authn_response_msg() and * lasso_login_build_artifact_msg(). You will have to chose between * lasso_login_build_authn_response_msg() and lasso_login_build_artifact_msg() depending on the - * requested protocol for the response by the service provider

+ * requested protocol for the response by the service provider * * * Identity provider single sign-on service diff --git a/lasso/id-wsf-2.0/soap_binding.c b/lasso/id-wsf-2.0/soap_binding.c index 4cfa891d..b9c7bb96 100644 --- a/lasso/id-wsf-2.0/soap_binding.c +++ b/lasso/id-wsf-2.0/soap_binding.c @@ -71,17 +71,17 @@ lasso_soap_envelope_sb2_get_provider_id(LassoSoapEnvelope *soap_envelope) * lasso_soap_envelope_sb2_get_redirect_request_url: * @soap_envelope: a #LassoSoapEnvelope object * - *

Return the redirect request URL from the sb2:RedirectRequest SOAP Fault detail.

+ * Return the redirect request URL from the sb2:RedirectRequest SOAP Fault detail. * - *

The WSC MUST verify that this URL belong to the WSP. You can do this by comparing the domain - * with the one in the @LassoProfile.msg_url field

- *

The WSC MUST redirect the User Agent to this URL with a GET or POST request. It MUST add a + * The WSC MUST verify that this URL belong to the WSP. You can do this by comparing the domain + * with the one in the @LassoProfile.msg_url field + * The WSC MUST redirect the User Agent to this URL with a GET or POST request. It MUST add a * parameter named ReturnToURL giving the URL where the WSP will send the User Agent after the * interaction. It MAY add an IDP parameter indicating to the WSP how to authenticate the principal - * if no preexisting session with the User Agent exists

- *

The WSP must check that the ReturnToURL belon to the WSP, by using the providerID URL for example.

-

After the interaction the WSC must redirect the User Agent to the ReturnToURL URL adding a parameter named ResendMessage. If ResendMessage is 0 or false, it means that the principal refused to continue the process. Any other value means that the prinicpal accepted and so the WSC can try again its request.

-

In order to succeed the request need to refer to the SOAP Fault response containing the RedirectRequest element. See lasso_soap_envelope_get_relates_to(), and #LassoWsAddrAttributedURI.

+ * if no preexisting session with the User Agent exists + *The WSP must check that the ReturnToURL belon to the WSP, by using the providerID URL for example. + After the interaction the WSC must redirect the User Agent to the ReturnToURL URL adding a parameter named ResendMessage. If ResendMessage is 0 or false, it means that the principal refused to continue the process. Any other value means that the prinicpal accepted and so the WSC can try again its request. + In order to succeed the request need to refer to the SOAP Fault response containing the RedirectRequest element. See lasso_soap_envelope_get_relates_to(), and #LassoWsAddrAttributedURI. * * Return value:(transfer none)(allow-none): the redirect URL string or NULL if no sb2:RedirectRequest detail is present. */ -- cgit