3 Replies Latest reply on Aug 28, 2012 9:07 AM by pcraveiro

SAML v2.0 Assertion - OneTimeUse support

glassesmouse Aug 21, 2012 7:43 PM

Hi,

I recently got a problem when parsing the SAML 2.0 response doc. It looks like org.picketlink.identity.federation.core.parsers.saml.SAMLCondtionParser does not recognize the standard OneTimeUse tag within the <saml:Conditions> type.

However, I checked org.picketlink.identity.federation.saml.v2.assertion package, and it has a OneTimeUseType class in it.

Does the current picketlink support OneTimeUse tag? If not, is there a way to get over this since we are in a situation where we can't change IDP's response xml.

Thanks...

1. Re: SAML v2.0 Assertion - OneTimeUse support

pcraveiro Aug 22, 2012 3:45 PM (in response to glassesmouse)

Hi Liu,

Can you open a JIRA with all information (stacktrace, PL and AS versions, etc) you have for that problem ?

Thanks.
Pedro Igor
Actions
2. Re: SAML v2.0 Assertion - OneTimeUse support

anil.saldhana Aug 22, 2012 5:27 PM (in response to pcraveiro)

https://issues.jboss.org/browse/PLFED-361
Actions
3. Re: SAML v2.0 Assertion - OneTimeUse support

pcraveiro Aug 28, 2012 9:07 AM (in response to glassesmouse)

Hi Haochen,

PL does not support OneTimeUse as a condition. To overcome your problem we're now parsing the tag. Please take a look at https://issues.jboss.org/browse/PLFED-361.

You can try the the latest sources from https://github.com/picketlink/federation.

Best regards.
Pedro Igor
Actions

Go to original post