Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-1333

SAML2 does not set content type when using HTTP-POST binding

    XMLWordPrintable

    Details

    • Rank:
      1|hznb87:

      Description

      In SAML2Utils#postToTarget currently we do not set a content-type and we completely rely on the underlying JSPs/containers to set the necessary text/html header. When using the fedlets the risk is higher that the environment won't set the correct content-type for the HTTP-POST response resulting in a text/plain displayed HTML form for example.

        Attachments

          Activity

            People

            peter.major Peter Major [X] (Inactive)
            peter.major Peter Major [X] (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: