Skip Menu |

This queue is for tickets about the Net-SAML2 CPAN distribution.

Report information
The Basics
Id: 71160
Status: resolved
Priority: 0/
Queue: Net-SAML2
People
Owner: Nobody in particular
Requestors: perl [...] okko.net
Cc:
AdminCc:
Bug Information
Severity: Normal
Broken in: 0.15
Fixed in: 0.18

History Show all quoted text
  Thu Sep 22 11:46:31 2011 oskari.ojala [...] frantic.com - Ticket created
Subject: Default to 'signing' when no use attribute for KeyDescriptor of the IdP SAML
This is a fix for warning "Use of uninitialized value $use in hash element at lib/perl5/Net/SAML2/IdP.pm line 109" when the use attribute is not provided for the KeyDescriptor of the IdP SAML. In file Net/SAML2/IdP.pm: for my $key ($xpath- Show quoted text
>findnodes('//md:EntityDescriptor/md:IDPSSODescriptor/md:KeyDescriptor')
) { - my $use = $key->getAttribute('use'); + my $use = $key->getAttribute('use') || 'signing'; my ($text) = $key- Show quoted text
>findvalue('ds:KeyInfo/ds:X509Data/ds:X509Certificate') =~ /^\s*
(.+?)\s*$/s; I haven't yet tested how the SAML process works without this, though.
  Thu Sep 22 12:02:15 2011 CHRISA [...] cpan.org - Correspondence added
On Thu Sep 22 11:46:31 2011, Okko wrote: Show quoted text
> In file Net/SAML2/IdP.pm: > > for my $key ($xpath-
> >findnodes('//md:EntityDescriptor/md:IDPSSODescriptor/md:KeyDescriptor')
> ) { > - my $use = $key->getAttribute('use'); > + my $use = $key->getAttribute('use') || 'signing'; > my ($text) = $key-
> >findvalue('ds:KeyInfo/ds:X509Data/ds:X509Certificate') =~ /^\s*
> (.+?)\s*$/s;
This seems reasonable, if a key is provided but not explicitly declared to be for a specific purpose. Show quoted text
> I haven't yet tested how the SAML process works without this, though.
It should be OK, if this turns out to be the key used for signing. Can I ask which IdP you're using that behaves like this? Thanks
  Thu Sep 22 12:02:16 2011 The RT System itself - Status changed from 'new' to 'open'
  Fri Sep 23 06:03:13 2011 oskari.ojala [...] frantic.com - Correspondence added
Thanks for a quick reply. On Thu Sep 22 12:02:15 2011, CHRISA wrote: Show quoted text
> Can I ask which IdP you're using that behaves like this?
It is a Shibboleth 2.x.
  Tue Apr 07 18:10:09 2020 TIMLEGGE [...] cpan.org - Correspondence added
Fixed in 17.06
  Tue Apr 07 18:10:10 2020 TIMLEGGE [...] cpan.org - Status changed from 'open' to 'resolved'
  Tue Apr 07 18:10:10 2020 TIMLEGGE [...] cpan.org - Fixed in 0.18 added