Interoporability issues in SAML 2.0 implementation
--------------------------------------------------
Key: RAMPART-285
URL: https://issues.apache.org/jira/browse/RAMPART-285
Project: Rampart
Issue Type: Bug
Components: rampart-trust
Reporter: Thilina Buddhika
Assignee: Ruchith Udayanga Fernando
In the current SAML 2.0 implementation, there are two places which cause some
interoperability issues with other implementations.
1. It should use generic SubjectConfirmationElement when processing the
assertion.
2. Attributes "NotBefore" and "NotOnOrAfter" should be set in a Conditions
element. Currently it is set in the SubjectConfirmationData element, which
defines validity period only for the Subject element, not the entire assertion.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
