Set SP session active after auth processing is completed...

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@1096 44740490-163a-0410-bde0-09ae8108e29a

www/saml2/idp/SSOService.php

@@ -243,10 +243,6 @@ if($needAuth && !$isPassive) {
 		$spmetadata = $metadata->getMetaData($spentityid, 'saml20-sp-remote');
 		
 		$sp_name = (isset($spmetadata['name']) ? $spmetadata['name'] : $spentityid);
-	
-		// Adding this service provider to the list of sessions.
-		// Right now the list is used for SAML 2.0 only.
-		$session->add_sp_session($spentityid);
 
 		SimpleSAML_Logger::info('SAML2.0 - IdP.SSOService: Sending back AuthnResponse to ' . $spentityid);
 		
@@ -380,6 +376,11 @@ if($needAuth && !$isPassive) {
 		
 		
 		
+		// Adding this service provider to the list of sessions.
+		// Right now the list is used for SAML 2.0 only.
+		$session->add_sp_session($spentityid);
+		
+		
 		// Generate an SAML 2.0 AuthNResponse message
 		$ar = new SimpleSAML_XML_SAML20_AuthnResponse($config, $metadata);
 		$authnResponseXML = $ar->generate($idpentityid, $spentityid, $requestcache['RequestID'], null, $filteredattributes);