Use SAML message creation time to set netBefore and notOnOrAfter (#799)
This commit is contained in:
parent
6c5487ab0e
commit
f8e37c0c8b
@ -22,7 +22,7 @@ use URI; # Get metadata URL path
|
|||||||
#inherits Lemonldap::NG::Common::Conf::SAML::Metadata protected service_metadata
|
#inherits Lemonldap::NG::Common::Conf::SAML::Metadata protected service_metadata
|
||||||
|
|
||||||
our @ISA = (qw(Lemonldap::NG::Portal::_Browser));
|
our @ISA = (qw(Lemonldap::NG::Portal::_Browser));
|
||||||
our $VERSION = '1.4.2';
|
our $VERSION = '1.4.4';
|
||||||
our $samlCache;
|
our $samlCache;
|
||||||
our $initGlibDone;
|
our $initGlibDone;
|
||||||
|
|
||||||
@ -1071,8 +1071,10 @@ sub buildAssertion {
|
|||||||
my $timeout = $time + $notOnOrAfterTimeout;
|
my $timeout = $time + $notOnOrAfterTimeout;
|
||||||
my $authenticationInstant = $self->timestamp2samldate($time);
|
my $authenticationInstant = $self->timestamp2samldate($time);
|
||||||
my $reauthenticateOnOrAfter = $self->timestamp2samldate($timeout);
|
my $reauthenticateOnOrAfter = $self->timestamp2samldate($timeout);
|
||||||
my $notBefore = $authenticationInstant;
|
my $issued_time = time;
|
||||||
my $notOnOrAfter = $reauthenticateOnOrAfter;
|
my $notBefore = $self->timestamp2samldate($issued_time);
|
||||||
|
my $notOnOrAfter =
|
||||||
|
$self->timestamp2samldate( $issued_time + $notOnOrAfterTimeout );
|
||||||
|
|
||||||
eval {
|
eval {
|
||||||
Lasso::Login::build_assertion( $login, $authn_context,
|
Lasso::Login::build_assertion( $login, $authn_context,
|
||||||
|
Loading…
Reference in New Issue
Block a user