yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1374033] [NEW] wsgi generating wrong entity_id values when issuing saml assertions.

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Marek Denis <marek.denis@xxxxxxx>
Date: Thu, 25 Sep 2014 16:30:06 -0000
Reply-to: Bug 1374033 <1374033@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

Attribute issuer should always be set to CONF.saml.idp_entity_id,
otherwise entityID from the IdP metadata and the generated assertion can
differ and hence make Service Provider reject the assertion.

** Affects: keystone
     Importance: Undecided
     Assignee: Marek Denis (marek-denis)
         Status: New

** Changed in: keystone
     Assignee: (unassigned) => Marek Denis (marek-denis)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1374033

Title:
  wsgi generating wrong entity_id values when issuing saml assertions.

Status in OpenStack Identity (Keystone):
  New

Bug description:
  Attribute issuer should always be set to CONF.saml.idp_entity_id,
  otherwise entityID from the IdP metadata and the generated assertion
  can differ and hence make Service Provider reject the assertion.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1374033/+subscriptions

Follow ups

[Bug 1374033] Re: wsgi generating wrong entity_id values when issuing saml assertions.
From: Thierry Carrez, 2014-09-30
[Bug 1374033] [NEW] wsgi generating wrong entity_id values when issuing saml assertions.
From: Marek Denis, 2014-09-25

References

[Bug 1374033] [NEW] wsgi generating wrong entity_id values when issuing saml assertions.
From: Marek Denis, 2014-09-25