Skip to content
Snippets Groups Projects
Commit effce8ab authored by Olav Morken's avatar Olav Morken
Browse files

SAML2:SP:Metadata: Escape XML in metadata.

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@192 44740490-163a-0410-bde0-09ae8108e29a
parent 5dc18aea
No related branches found
No related tags found
No related merge requests found
...@@ -23,7 +23,7 @@ try { ...@@ -23,7 +23,7 @@ try {
*/ */
$metaxml = '<?xml version="1.0" encoding="UTF-8" standalone="yes"?> $metaxml = '<?xml version="1.0" encoding="UTF-8" standalone="yes"?>
<EntityDescriptor entityID="' . $spentityid . '" xmlns="urn:oasis:names:tc:SAML:2.0:metadata"> <EntityDescriptor entityID="' . htmlspecialchars($spentityid) . '" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
<SPSSODescriptor <SPSSODescriptor
AuthnRequestsSigned="false" AuthnRequestsSigned="false"
...@@ -32,7 +32,7 @@ try { ...@@ -32,7 +32,7 @@ try {
<SingleLogoutService <SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="' . $metadata->getGenerated('SingleLogoutService', 'saml20-sp-hosted') . '"/> Location="' . htmlspecialchars($metadata->getGenerated('SingleLogoutService', 'saml20-sp-hosted')) . '"/>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
...@@ -40,7 +40,7 @@ try { ...@@ -40,7 +40,7 @@ try {
index="0" index="0"
isDefault="true" isDefault="true"
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="' . $metadata->getGenerated('AssertionConsumerService', 'saml20-sp-hosted') . '" /> Location="' . htmlspecialchars($metadata->getGenerated('AssertionConsumerService', 'saml20-sp-hosted')) . '" />
</SPSSODescriptor> </SPSSODescriptor>
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment