dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Use SAML message creation time to set netBefore and notOnOrAfter (#799)

Browse Source
This commit is contained in:
Clément Oudot 2015-03-27 08:29:12 +00:00
parent 6c5487ab0e
commit f8e37c0c8b
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
lemonldap-ng-portal/lib/Lemonldap/NG/Portal/_SAML.pm
View File

@ -22,7 +22,7 @@ use URI; # Get metadata URL path
#inherits Lemonldap::NG::Common::Conf::SAML::Metadata protected service_metadata #inherits Lemonldap::NG::Common::Conf::SAML::Metadata protected service_metadata
our @ISA = (qw(Lemonldap::NG::Portal::_Browser)); our @ISA = (qw(Lemonldap::NG::Portal::_Browser));
our $VERSION = '1.4.2'; our $VERSION = '1.4.4';
our $samlCache; our $samlCache;
our $initGlibDone; our $initGlibDone;
@ -1071,8 +1071,10 @@ sub buildAssertion {
my $timeout = $time + $notOnOrAfterTimeout; my $timeout = $time + $notOnOrAfterTimeout;
my $authenticationInstant = $self->timestamp2samldate($time); my $authenticationInstant = $self->timestamp2samldate($time);
my $reauthenticateOnOrAfter = $self->timestamp2samldate($timeout); my $reauthenticateOnOrAfter = $self->timestamp2samldate($timeout);
my $notBefore = $authenticationInstant; my $issued_time = time;
my $notOnOrAfter = $reauthenticateOnOrAfter; my $notBefore = $self->timestamp2samldate($issued_time);
my $notOnOrAfter =
$self->timestamp2samldate( $issued_time + $notOnOrAfterTimeout );
eval { eval {
Lasso::Login::build_assertion( $login, $authn_context, Lasso::Login::build_assertion( $login, $authn_context,