e08748a19c208005b9fccd4d4ca8281519eeec3d |
|
28-Jul-2013 |
Peter Major <majorpetya@gmail.com> |
Fix for OPENAM-1180 - review: CR-1957
The solution involved following changes:
* changed the way the login URL is being saved for forwarded request, now
we only save the forwarded request parameters, hence the originally used
parameters (like SAMLRequest) are no longer saved
* changed the SAML redirectAuthentication implementation to include some
extra request parameters for the goto URL, this way we can ensure that we
can send back a SAML error response to the SP even when the AuthnRequest is
no longer available.
* In case the AuthnRequest is not available (by any means) now we send back
a SAML error response to the SP instead of showing an HTTP-500 |