Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-3470

The SAML2 nameid should not be persisted if the nameid-format is not persistent

    Details

    • Sprint:
      Sprint 81 - Sustaining, Sprint 82 - Sustaining
    • Support Ticket IDs:

      Description

      The SAML2 nameid gets persisted whenever the nameid-format is not transient. This has undesired side effects, such as when the nameid-format is emailAddress (mapped to the mail attribute for instance) and a user's email address changes, but the persisted sun-fm-saml2-nameid-infokey value will still contain the old value of mail.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                peter.major Peter Major [X] (Inactive)
                Reporter:
                zoltan.tarcsay Zoltan Tarcsay
              • Votes:
                2 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2h Original Estimate - 2h
                  2h
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 31h
                  31h