Skip to content
Snippets Groups Projects
Commit d4129426 authored by Olav Morken's avatar Olav Morken
Browse files

saml: Support AuthnStatement without SessionIndex. 

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@2727 44740490-163a-0410-bde0-09ae8108e29a
parent a1e2f8db
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
modules/saml/lib/SP/LogoutStore.php
+ 10
1
View file @ d4129426
...@@ -158,9 +158,18 @@ class sspmod_saml_SP_LogoutStore { ...@@ -158,9 +158,18 @@ class sspmod_saml_SP_LogoutStore {
*/ */
public static function addSession($authId, array $nameId, $sessionIndex, $expire) { public static function addSession($authId, array $nameId, $sessionIndex, $expire) {
assert('is_string($authId)'); assert('is_string($authId)');
assert('is_string($sessionIndex)'); assert('is_string($sessionIndex) || is_null($sessionIndex)');
assert('is_int($expire)'); assert('is_int($expire)');
if ($sessionIndex === NULL) {
/* This IdP apparently did not include a SessionIndex, and thus probably does not
* support SLO. We still want to add the session to the data store just in case
* it supports SLO, but we don't want an LogoutRequest with a specific
* SessionIndex to match this session. We therefore generate our own session index.
*/
$sessionIndex = SimpleSAML_Utilities::generateID();
}
$store = SimpleSAML_Store::getInstance(); $store = SimpleSAML_Store::getInstance();
if ($store === FALSE) { if ($store === FALSE) {
/* We don't have a datastore. */ /* We don't have a datastore. */
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment