diff options
| -rw-r--r-- | id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/VerifyXMLSignatureResponseValidator.java | 9 | 
1 files changed, 6 insertions, 3 deletions
| diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/VerifyXMLSignatureResponseValidator.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/VerifyXMLSignatureResponseValidator.java index 1f2ebc37c..d5650b897 100644 --- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/VerifyXMLSignatureResponseValidator.java +++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/auth/validator/VerifyXMLSignatureResponseValidator.java @@ -92,9 +92,12 @@ public class VerifyXMLSignatureResponseValidator {      } -    // TODO See Bug #322 -    // Check result of SignatureManifestCheck -     +    // Check the signature manifest only when verifying the signed AUTHBlock +    if (whatToCheck.equals(CHECK_AUTH_BLOCK)) { +      if (verifyXMLSignatureResponse.getSignatureManifestCheckCode() > 0) { +        throw new ValidateException("validator.50", null); +      } +    }      //Check whether the returned X509 SubjectName is in the MOA-ID configuration or not      if (identityLinkSignersSubjectDNNames != null) { | 
