Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-428

PicketLink does not include Destination for an AuthnFailed Response

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • PLINK_2.6.0.CR3
    • PLINK_2.5.2.FInal, PLINK_2.6.0.CR2, PLINK_2.6.0.CR1
    • SAML
    • None

    Description

      PicketLink does not include Destination URI for an AuthnFailed Response. This is an optional attribute but is required under as per the SAML Spec under certain cases.

      As per the spec "If the message is signed, the Destination XML attribute in the root SAML element of the protocol
      message MUST contain the URL to which the sender has instructed the user agent to deliver the
      message. The recipient MUST then verify that the value matches the location at which the message has
      been received."

      Attachments

        Activity

          People

            psilva@redhat.com Pedro Igor Craveiro
            krisiye Kris Iyer (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: