1 files changed, 34 insertions, 0 deletions

diff --git a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/saml1/SAML1Protocol.java b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/saml1/SAML1Protocol.java
index 678d5f961..610c61343 100644
--- a/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/saml1/SAML1Protocol.java
+++ b/id/server/idserverlib/src/main/java/at/gv/egovernment/moa/id/protocols/saml1/SAML1Protocol.java
@@ -69,6 +69,14 @@ public class SAML1Protocol implements IModulInfo, MOAIDAuthConstants {
 		oaURL = StringEscapeUtils.escapeHtml(oaURL);
 		String target = (String) request.getParameter(PARAM_TARGET);
 		target = StringEscapeUtils.escapeHtml(target);
+		
+		//the target parameter is used to define the OA in SAML1 standard
+		if (target != null && target.startsWith("http")) {
+			oaURL = target;
+			target = null;
+		}
+		
+		
 		if (!ParamValidatorUtils.isValidOA(oaURL))
 			throw new WrongParametersException("StartAuthentication", PARAM_OA,
 					"auth.12");
@@ -95,4 +103,30 @@ public class SAML1Protocol implements IModulInfo, MOAIDAuthConstants {
 		return null;
 	}
 
+	public boolean validate(HttpServletRequest request,
+			HttpServletResponse response, IRequest pending) {
+
+		//TODO: funktioniert so nicht!!!
+		
+//		String oaURL = (String) request.getParameter(PARAM_OA);
+//		oaURL = StringEscapeUtils.escapeHtml(oaURL);
+//		String target = (String) request.getParameter(PARAM_TARGET);
+//		target = StringEscapeUtils.escapeHtml(target);
+//		
+//		//the target parameter is used to define the OA in SAML1 standard
+//		if (target.startsWith("http")) {
+//			oaURL = target;
+//			target = null;
+//		}
+//		
+//		if (oaURL != null) {
+//			if (oaURL.equals(pending.getOAURL()))
+//				return true;
+//			else
+//				return false;
+//		}
+		
+		return true;
+	}
+
 }