Details
-
Bug
-
Resolution: Done
-
Major
-
7.1.6.GA
Description
An application is a SAML SP. A SAML request to the SP has an Encrypted assertion.
If a decrypted assertion is not a normalized XML, it causes ClassCastException:
Caused by: java.lang.ClassCastException: org.codehaus.stax2.ri.evt.CharactersEventImpl cannot be cast to javax.xml.stream.events.EndElement
at org.picketlink.identity.federation.core.parsers.saml.SAMLSubjectParser.parse(SAMLSubjectParser.java:128)
at org.picketlink.identity.federation.core.parsers.saml.SAMLAssertionParser.parse(SAMLAssertionParser.java:132)
at org.picketlink.identity.federation.core.parsers.saml.SAMLParser.parse(SAMLParser.java:67)
at org.picketlink.identity.federation.web.handlers.saml2.SAML2AuthenticationHandler$SPAuthenticationHandler.decryptAssertion(SAML2AuthenticationHandler.java:574)
Attachments
Issue Links
- clones
-
-
- Open
-
- is incorporated by
-
JBEAP-17182 (7.2.z) Upgrade PicketLink from 2.5.5.SP12-redhat-00006 to 2.5.5.SP12-redhat-00007
-
- Closed
-
