diff options
| author | Thomas Lenz <tlenz@iaik.tugraz.at> | 2019-03-05 09:06:52 +0100 |
|---|---|---|
| committer | Thomas Lenz <tlenz@iaik.tugraz.at> | 2019-03-05 09:06:52 +0100 |
| commit | d0ea99676485e559445df05e937bf899a50308bc (patch) | |
| tree | 5fcb27d2b869bbfed0185283098d312febda2249 /id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator | |
| parent | 378e00b2039eca7139733c99d9ef4dc618f041f1 (diff) | |
| download | moa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.tar.gz moa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.tar.bz2 moa-id-spss-d0ea99676485e559445df05e937bf899a50308bc.zip | |
fix attribute escaping problem in IdentityLinkAssertionParser and move the escaping into SL1.0 AuthBlock builder and validator
this fix can be deactivated by property: 'configuration.bugfix.enable.idl.escaping' to get backward compatibility
Diffstat (limited to 'id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator')
| -rw-r--r-- | id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java b/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java index ab9be7163..78d999971 100644 --- a/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java +++ b/id/server/modules/moa-id-modul-citizencard_authentication/src/main/java/at/gv/egovernment/moa/id/auth/validator/CreateXMLSignatureResponseValidator.java @@ -161,7 +161,7 @@ public class CreateXMLSignatureResponseValidator { } // replace ' in name with ' issuer = issuer.replaceAll("'", "'"); - if (!issuer.equals(identityLink.getName())) + if (!issuer.equals(identityLink.getName().replaceAll("'", "'"))) throw new ValidateException("validator.33", new Object[] {issuer, identityLink.getName()}); @@ -467,7 +467,7 @@ public class CreateXMLSignatureResponseValidator { throw new ValidateException("validator.39", new Object[] {issueInstant, session.getIssueInstant()}); } - String name = identityLink.getName(); + String name = identityLink.getName().replaceAll("'", "'"); if (!issuer.equals(name)) { throw new ValidateException("validator.33", new Object[] {issuer, name}); |