cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ethan Wallwork (JIRA)" <>
Subject [jira] [Commented] (CXF-5277) ConditionsProvider receives limited information from SAMLTokenRenewer
Date Fri, 13 Sep 2013 16:10:53 GMT


Ethan Wallwork commented on CXF-5277:

That fix sounds like it will work just fine.  I have to add that you are wonderfully quick
in responding to submitted CXF issues!  It has made our project go much more smoothly.
> ConditionsProvider receives limited information from SAMLTokenRenewer
> ---------------------------------------------------------------------
>                 Key: CXF-5277
>                 URL:
>             Project: CXF
>          Issue Type: Improvement
>          Components: STS
>    Affects Versions: 2.7.6
>            Reporter: Ethan Wallwork
>            Assignee: Colm O hEigeartaigh
>             Fix For: 2.6.10, 2.7.7
> The ConditionsProvider receives only the appliesToAddress and lifetime when called from
SAMLTokenRenewer.  This is in contrast to issue operations where the full TokenProviderParameters
is passed.  This makes it difficult to calculate conditions based on other attributes of the
request.  For example, a ConditionsProvider implementation may wish to restrict renewals to
a limited time period based on the AuthnInstant attribute of an AuthnStatement in the assertion
being renewed.
> If the full TokenRenewerParamters were passed instead then the necessary information
would be available to perform more complex calculations.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message