Switch the SAML issuer to be the IDP URL as opposed to the realm

Project: http://git-wip-us.apache.org/repos/asf/cxf-fediz/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf-fediz/commit/cd97daed
Tree: http://git-wip-us.apache.org/repos/asf/cxf-fediz/tree/cd97daed
Diff: http://git-wip-us.apache.org/repos/asf/cxf-fediz/diff/cd97daed

Branch: refs/heads/master
Commit: cd97daed2705105fb960bfbe8adccab3d5870be4
Parents: cb4a099
Author: Colm O hEigeartaigh <cohei...@apache.org>
Authored: Wed Aug 9 11:45:37 2017 +0100
Committer: Colm O hEigeartaigh <cohei...@apache.org>
Committed: Wed Aug 9 12:39:14 2017 +0100

----------------------------------------------------------------------
 .../cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/cxf-fediz/blob/cd97daed/services/idp-core/src/main/java/org/apache/cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java
----------------------------------------------------------------------
diff --git 
a/services/idp-core/src/main/java/org/apache/cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java
 
b/services/idp-core/src/main/java/org/apache/cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java
index dd0d65e..d5a13a2 100644
--- 
a/services/idp-core/src/main/java/org/apache/cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java
+++ 
b/services/idp-core/src/main/java/org/apache/cxf/fediz/service/idp/beans/samlsso/SamlResponseCreator.java
@@ -100,7 +100,7 @@ public class SamlResponseCreator {
                                            String remoteAddr, String racs) 
throws Exception {
         // Create an AuthenticationAssertion
         SAML2CallbackHandler callbackHandler = new SAML2CallbackHandler();
-        callbackHandler.setIssuer(idp.getRealm());
+        callbackHandler.setIssuer(idp.getIdpUrl().toString());
         callbackHandler.setSubject(receivedToken.getSaml2().getSubject());
 
         // Test Subject against received Subject (if applicable)
@@ -154,7 +154,7 @@ public class SamlResponseCreator {
                 "urn:oasis:names:tc:SAML:2.0:status:Success", null
             );
         Response response =
-            SAML2PResponseComponentBuilder.createSAMLResponse(requestID, 
idp.getRealm(), status);
+            SAML2PResponseComponentBuilder.createSAMLResponse(requestID, 
idp.getIdpUrl().toString(), status);
 
         response.getAssertions().add(assertion);
 

Reply via email to