I was debugging SAML response with arbitrarily large ALLOWED_CLOCK_DRIFT. I noticed that it didn't apply to all timestamp values. This PR makes the ALLOWED_CLOCK_DRIFT to apply to more values.
Should I add some tests for this? What kind of tests are needed?
I was debugging SAML response with arbitrarily large
ALLOWED_CLOCK_DRIFT
. I noticed that it didn't apply to all timestamp values. This PR makes theALLOWED_CLOCK_DRIFT
to apply to more values.Should I add some tests for this? What kind of tests are needed?