Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-700

SAML 2.0 Unsollicited Response MUST NOT contain an InResponseTo attribute,

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: PLINK_2.7.0.Final
    • Fix Version/s: PLINK_2.7.1.Final
    • Component/s: SAML
    • Labels:
      None

      Description

      When Using a SAML V2 Idp Initiated Single Sign On Scenario, the SAML Reponse that gets generated by PicketLink contains an InResponseTo attribute.

      SAML Spec says "An unsolicited <Response> MUST NOT contain an InResponseTo attribute, "

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  pcraveiro Pedro Igor Silva
                  Reporter:
                  drom Didier Romelot
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  4 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: