search

Uninett / mod_auth_mellon

An Apache module with a simple SAML 2.0 service provider
207 stars 182 forks source link

MellonUser directive should be case insensitive #131

Closed mcgitty closed 7 years ago

mcgitty commented 7 years ago

In error, the IdP sent an attribute name in all caps "EID", while I asked it to be "eid". The RequestHeader directive seems to handle everything case insensitive, so my application still got the right header. However, the MellonUser directive deemed the IdP assertion incorrect with this error:

[Wed Aug 16 02:57:17.700896 2017] [auth_mellon:notice] [...] [client ...] Didn't find the attribute "eid" in the attributes which were received from the IdP. Cannot set a user for this request without a valid user attribute.

Mellon should also handle this check case insensitive like the RequestHeader directive.

olavmrk commented 7 years ago

Hi,

I have just committed c291232, which should fix this problem.