aboutsummaryrefslogtreecommitdiff
path: root/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator
diff options
context:
space:
mode:
authorThomas Lenz <tlenz@iaik.tugraz.at>2019-03-05 09:06:52 +0100
committerThomas Lenz <tlenz@iaik.tugraz.at>2019-03-05 09:06:52 +0100
commitd0ea99676485e559445df05e937bf899a50308bc (patch)
tree5fcb27d2b869bbfed0185283098d312febda2249 /id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator
parent378e00b2039eca7139733c99d9ef4dc618f041f1 (diff)
downloadmoa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.tar.gz
moa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.tar.bz2
moa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.zip
fix attribute escaping problem in IdentityLinkAssertionParser and move the escaping into SL1.0 AuthBlock builder and validator
this fix can be deactivated by property: 'configuration.bugfix.enable.idl.escaping' to get backward compatibility
Diffstat (limited to 'id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator')
-rw-r--r--id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java4
1 files changed, 2 insertions, 2 deletions
diff --git a/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java b/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
index ab9be7163..78d999971 100644
--- a/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
+++ b/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java
@@ -161,7 +161,7 @@ public class CreateXMLSignatureResponseValidator {
}
// replace ' in name with &#39;
issuer = issuer.replaceAll("'", "&#39;");
- if (!issuer.equals(identityLink.getName()))
+ if (!issuer.equals(identityLink.getName().replaceAll("'", "&#39;")))
throw new ValidateException("validator.33", new Object[] {issuer, identityLink.getName()});
@@ -467,7 +467,7 @@ public class CreateXMLSignatureResponseValidator {
throw new ValidateException("validator.39", new Object[] {issueInstant, session.getIssueInstant()});
}
- String name = identityLink.getName();
+ String name = identityLink.getName().replaceAll("'", "&#39;");
if (!issuer.equals(name)) {
throw new ValidateException("validator.33", new Object[] {issuer, name});