Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-780

[GSS](7.1.z) The fix for CVE-2017-2582 breaks the feature of attribute replacement with system property in picketlink.xml

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • None
    • None

      This was partially fixed in EAP 6.4.19, but there are other settings ( LogOutUrl, LogOutResponseLocation, etc) in the picketlink.xml that still do not allow for variable substitution.

            psilva@redhat.com Pedro Igor Craveiro
            jondruse@redhat.com Jiri Ondrusek
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: