Project

General

Profile

Bug #4378

request processing is backward, we should know the issuer before processing the request

Added by Benjamin Dauvergne over 10 years ago. Updated almost 9 years ago.

Status:
Fermé
Priority:
Normal
Category:
-
Target version:
Start date:
28 February 2014
Due date:
% Done:

0%

Estimated time:
Patch proposed:
Planning:

Description

For IdP with lot of providers or doing auto-provisionning of metadata it's necessary to know the issuer of a request before calling the processRequestMsg() method.

A class method LassoProfile.get_saml2_msg_issuer(cls, msg, http_method) could be a solution.

Associated revisions

Revision 65bc7052 (diff)
Added by Benjamin Dauvergne almost 9 years ago

profile: add two new class methods, lasso_profile_get_issuer and lasso_profile_get_in_response_to (#4378)

The goal of those two methods is to allow IdP and SP to load metadata
dynamically without processing completely the incoming. Currently it's
impossible as message parsing and signature checking is done in the same
function.

Revision 6e832629 (diff)
Added by Benjamin Dauvergne almost 9 years ago

FAQ: add section about getting the issuer before parsing the received message (#4378)

History

#1

Updated by Benjamin Dauvergne about 9 years ago

  • Assignee set to Benjamin Dauvergne
#2

Updated by Benjamin Dauvergne about 9 years ago

  • Priority changed from Haut to Normal
#3

Updated by Benjamin Dauvergne almost 9 years ago

  • Target version set to future
#4

Updated by Benjamin Dauvergne almost 9 years ago

  • Status changed from Nouveau to Fermé
  • Target version changed from future to 2.5.0

Also available in: Atom PDF