Bug #48
ID-WSF 1.0: only one credential should be added to the SOAP message
Start date:
21 May 2010
Due date:
% Done:
0%
Estimated time:
Patch proposed:
Planning:
Description
In lasso_wsf_profile_comply_with_saml_authentication we traverse the list of
CredentialRef in a web service description and add them all to the security
context of the soap message, is this necessary ?
We also failed if any of the referenced assertion is missing from the session
context, is this a correct behaviour ?
(Needs reference from the specifications)
History
Updated by Benjamin Dauvergne about 13 years ago
- Description updated (diff)
- Priority changed from Normal to Bas