SAML: get SessionIndex before validating SLO request (closes #64)

2010-05-20 08:59:59 +00:00 · 2010-05-20 08:59:59 +00:00 · fdc84aac52
commit fdc84aac52
parent ef3faf7d3e
1 changed files with 4 additions and 4 deletions
--- a/modules/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/IssuerDBSAML.pm
+++ b/modules/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/IssuerDBSAML.pm
@ -829,6 +829,10 @@ sub issuerForAuthUser {
            # Do we check signature?
            # TODO

+            # Get session index
+            my $session_index;
+            eval { $session_index = $logout->request()->SessionIndex; };
+
            # Proceed to logout on all others SP
            my $logout_dump = $logout->dump;
            my $provider_nb =
@ -851,10 +855,6 @@ sub issuerForAuthUser {
                $self->lmLog( "Set $relaystate in RelayState", 'debug' );
            }

-            # Get session index
-            my $session_index;
-            eval { $session_index = $logout->request()->SessionIndex; };
-
            # SLO requests without session index are not accepted
            if ( $@ or !defined $session_index ) {
                $self->lmLog(