Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-7507

Adding a SAML2 static mapping that contains an = (equals) breaks the mapping parsing

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 10.0.2, 11.0.0, 11.0.1, 11.0.2, 11.0.3, 12.0.0, 12.0.1, 12.0.2
    • Fix Version/s: 11.0.4, 12.0.3, 13.0.0
    • Component/s: SAML
    • Labels:
    • Sprint:
      AM Sustaining Sprint 14, AM Sustaining Sprint 15

      Description

      Adding a static value to the IDP or SP SAML attribute mapping that contains an = breaks the mapping parsing code.

      For example, role="cn=admin" becomes "cn which is then interpreted as a local attribute lookup rather than a static value. This is due to the SAML2Utils.getConfigAttributeMap call:

                      StringTokenizer st = new StringTokenizer(entry, "=");
                      attributeMap.put(st.nextToken(), st.nextToken());
      

        Attachments

          Activity

            People

            • Assignee:
              markdr Mark de Reeper
              Reporter:
              markdr Mark de Reeper
            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: