Repository: cxf-fediz Updated Branches: refs/heads/master abec978fc -> 10ca19558
Ensure the AuthnRequest has an Issuer Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/0f2067ab Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/0f2067ab Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/0f2067ab Branch: refs/heads/master Commit: 0f2067abf24d98c07e1a2b2aedfe17aaea041e84 Parents: abec978 Author: Colm O hEigeartaigh <[email protected]> Authored: Thu Mar 24 17:26:58 2016 +0000 Committer: Colm O hEigeartaigh <[email protected]> Committed: Thu Mar 24 17:26:58 2016 +0000 ---------------------------------------------------------------------- .../cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java | 5 +++++ 1 file changed, 5 insertions(+) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/0f2067ab/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java ---------------------------------------------------------------------- diff --git a/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java b/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java index 82f3c66..c32e467 100644 --- a/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java +++ b/services/idp/src/main/java/org/apache/cxf/fediz/service/idp/samlsso/AuthnRequestValidator.java @@ -98,6 +98,11 @@ public class AuthnRequestValidator { LOG.debug("No signature is present, therefore the request is rejected"); throw new ProcessingException(TYPE.BAD_REQUEST); } + + if (authnRequest.getIssuer() == null) { + LOG.debug("No Issuer is present in the AuthnRequest"); + throw new ProcessingException(TYPE.BAD_REQUEST); + } } private void checkDestination(RequestContext context, AuthnRequest authnRequest) throws ProcessingException {
