Bug #4378
request processing is backward, we should know the issuer before processing the request
Début:
28 février 2014
Echéance:
% réalisé:
0%
Temps estimé:
Patch proposed:
Planning:
Description
For IdP with lot of providers or doing auto-provisionning of metadata it's necessary to know the issuer of a request before calling the processRequestMsg()
method.
A class method LassoProfile.get_saml2_msg_issuer(cls, msg, http_method)
could be a solution.
Révisions associées
FAQ: add section about getting the issuer before parsing the received message (#4378)
Historique
Mis à jour par Benjamin Dauvergne il y a plus de 8 ans
- Statut changé de Nouveau à Fermé
- Version cible changé de future à 2.5.0
profile: add two new class methods, lasso_profile_get_issuer and lasso_profile_get_in_response_to (#4378)
The goal of those two methods is to allow IdP and SP to load metadata
dynamically without processing completely the incoming. Currently it's
impossible as message parsing and signature checking is done in the same
function.