root
/
spring-security
mirror of https://github.com/spring-projects/spring-security.git
1
0
Fork 0
Code Issues Actions 3 Packages Projects Releases Wiki Activity

OpenSAML expects type `long` representing millis for response time validation skew 

Fixes gh-7448

https://github.com/spring-projects/spring-security/issues/7448
This commit is contained in:
Filip Hanik 2019-09-17 08:53:12 -07:00
parent 45a1490d5d
commit 20033ffd4a
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSamlAuthenticationProvider.java
View File

@ -253,7 +253,7 @@ public final class OpenSamlAuthenticationProvider implements AuthenticationProvi
validationParams.put(SAML2AssertionValidationParameters.SIGNATURE_REQUIRED, false); validationParams.put(SAML2AssertionValidationParameters.SIGNATURE_REQUIRED, false);
validationParams.put( validationParams.put(
SAML2AssertionValidationParameters.CLOCK_SKEW, SAML2AssertionValidationParameters.CLOCK_SKEW,
this.responseTimeValidationSkew this.responseTimeValidationSkew.toMillis()
); );
validationParams.put( validationParams.put(
SAML2AssertionValidationParameters.COND_VALID_AUDIENCES, SAML2AssertionValidationParameters.COND_VALID_AUDIENCES,