bugfix: Make sure a persistent NameID is not generated by default when the... (a890b604) · Commits · Perun / Perun ProxyIdP / v1 / simplesamlphp

Commit a890b604 authored 8 years ago by Jaime Pérez

bugfix: Make sure a persistent NameID is not generated by default when the...

bugfix: Make sure a persistent NameID is not generated by default when the UserID is missing in the state array.

This allowed misconfigured IdPs (i.e. those without both a PersistenNameID authproc filter, a “userid.attribute” configuration option and no “eduPersonPrincipalName” attribute available after running all the authentication processing filters) to generate a persistent NameID based on “null”, effectively giving all users the same identifier.

parent baba857a

No related branches found

No related tags found

No related merge requests found

Hide whitespace changes

Inline Side-by-side

Showing with 1 addition and 0 deletions

Please register or to comment