Author: coheigea
Date: Thu May 31 13:40:40 2012
New Revision: 1344722
URL: http://svn.apache.org/viewvc?rev=1344722&view=rev
Log:
[CXF-4352] - SAML Web SSO processing error when receiving a signed Assertion
Modified:
cxf/trunk/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/SAMLSSOResponseValidator.java
Modified:
cxf/trunk/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/SAMLSSOResponseValidator.java
URL:
http://svn.apache.org/viewvc/cxf/trunk/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/SAMLSSOResponseValidator.java?rev=1344722&r1=1344721&r2=1344722&view=diff
==============================================================================
---
cxf/trunk/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/SAMLSSOResponseValidator.java
(original)
+++
cxf/trunk/rt/rs/security/sso/saml/src/main/java/org/apache/cxf/rs/security/saml/sso/SAMLSSOResponseValidator.java
Thu May 31 13:40:40 2012
@@ -22,10 +22,12 @@ import java.util.Date;
import java.util.List;
import java.util.logging.Logger;
+import org.w3c.dom.Element;
+
import org.apache.cxf.common.logging.LogUtils;
import org.apache.ws.security.WSSecurityException;
-import org.apache.ws.security.saml.ext.AssertionWrapper;
import org.apache.ws.security.saml.ext.builder.SAML2Constants;
+import org.apache.ws.security.util.DOM2Writer;
import org.opensaml.saml2.core.AudienceRestriction;
import org.opensaml.saml2.core.AuthnStatement;
@@ -126,8 +128,8 @@ public class SAMLSSOResponseValidator {
validatorResponse.setResponseId(samlResponse.getID());
validatorResponse.setSessionNotOnOrAfter(sessionNotOnOrAfter);
// the assumption for now is that SAMLResponse will contain only a
single assertion
- validatorResponse.setAssertion(
- new
AssertionWrapper(samlResponse.getAssertions().get(0)).assertionToString());
+ Element assertionElement =
samlResponse.getAssertions().get(0).getDOM();
+
validatorResponse.setAssertion(DOM2Writer.nodeToString(assertionElement));
return validatorResponse;
}
