cxf-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From cohei...@apache.org
Subject [1/2] cxf-fediz git commit: Ensure the AuthnRequest has an Issuer
Date Thu, 24 Mar 2016 17:50:05 GMT
Repository: cxf-fediz
Updated Branches:
  refs/heads/master abec978fc -> 10ca19558


Ensure the AuthnRequest has an Issuer


Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/0f2067ab
Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/0f2067ab
Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/0f2067ab

Branch: refs/heads/master
Commit: 0f2067abf24d98c07e1a2b2aedfe17aaea041e84
Parents: abec978
Author: Colm O hEigeartaigh <coheigea@apache.org>
Authored: Thu Mar 24 17:26:58 2016 +0000
Committer: Colm O hEigeartaigh <coheigea@apache.org>
Committed: Thu Mar 24 17:26:58 2016 +0000

----------------------------------------------------------------------
 .../cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java    | 5 +++++
 1 file changed, 5 insertions(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/0f2067ab/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java
----------------------------------------------------------------------
diff --git a/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java
b/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java
index 82f3c66..c32e467 100644
--- a/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java
+++ b/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java
@@ -98,6 +98,11 @@ public class AuthnRequestValidator {
             LOG.debug("No signature is present, therefore the request is rejected");
             throw new ProcessingException(TYPE.BAD_REQUEST);
         }
+        
+        if (authnRequest.getIssuer() == null) {
+            LOG.debug("No Issuer is present in the AuthnRequest");
+            throw new ProcessingException(TYPE.BAD_REQUEST);
+        }
     }
     
     private void checkDestination(RequestContext context, AuthnRequest authnRequest) throws
ProcessingException {


Mime
View raw message