multiple AuthenticatingAuthority elements not allowed in SAML assertion
SAML Assertions with multiple AuthenticatingAuthority elements are not allowed in lasso, but are allowed according to the schema.
Attached patch fixes it, but I am not sure it is correct, nor am I completely sure this is the proper way to fix it.
xml: adapt schema in saml2:AuthnContext (#29340)
saml2:AuthnContext XML schema indicate that AuthenticatingAuthority is
an optional unbounded list of nodes, but the current Lasso schema only
handle an unique element. To prevent Lasso from refusing perfectly legal
messages, we add a rule to the Lasso ignoring other nodes after the
#1 Updated by Benjamin Dauvergne 5 months ago
This patch cannot work asyou modify the schema but not the structure, SNIPPET_LIST_NODES generate GList objects but the AuthenticatingAuthority is a
char *, as we forbid any ABI change (i.e. it's forbidden to change the type of a structure field for now), you'll need to work as in commit 6f617027e9c46f3cb907e8bdbe1d3ef265d2b4d0.