search

simplesamlphp / simplesamlphp

SimpleSAMLphp is an application written in native PHP that deals with authentication.
https://simplesamlphp.org
GNU Lesser General Public License v2.1
1.07k stars 676 forks source link

Issue with Scoped Attributes #653

Closed maboyce closed 5 years ago

maboyce commented 7 years ago

It appears that decoding a SAML2 scoped attribute that has the scope as an attribute rather than "inline". For example: the IdP sends -

username is returned to the SP as - username it appears that the scope is not being retrieved from the AttributeValue...
thijskh commented 5 years ago

I cannot find anything in the SAML 2.0 spec that would allow or support this.

jaimeperez commented 5 years ago

Hi Mark!

I sort of recall this being the initial practice during SAML 1 times. Do you know what kind of software is this IdP running?

maboyce commented 5 years ago

Hi Jaime,

The originating IdP is running Shibboleth... I don't recall the version and maybe they've fixed it by now...

thanks,

m.

On Fri, Nov 30, 2018 at 12:24 AM Jaime Pérez Crespo < notifications@github.com> wrote:

Hi Mark!

I sort of recall this being the initial practice during SAML 1 times. Do you know what kind of software is this IdP running?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/simplesamlphp/simplesamlphp/issues/653#issuecomment-443127739, or mute the thread https://github.com/notifications/unsubscribe-auth/AR4HizJm33tLPJw6i0h2zetszf4arnV5ks5u0OsqgaJpZM4OaOCC .