Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-749

SAML 2.0 Unsolicited Response MUST NOT contain an InResponseTo attribute

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: PLINK_2.5.3.Beta1
    • Fix Version/s: None
    • Component/s: SAML
    • Labels:
      None

      Description

      When Using a SAML V2 Idp Initiated Single Sign On Scenario, the SAML Reponse that gets generated by PicketLink contains an InResponseTo attribute.

      SAML Spec says "An unsolicited <Response> MUST NOT contain an InResponseTo attribute, "

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  pskopek Peter Škopek
                  Reporter:
                  vpakan Vlado Pakan
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  1 Start watching this issue

                  Dates

                  • Created:
                    Updated: