Uploaded image for project: 'SX Spring Security Extension'
  1. SX Spring Security Extension
  2. SES-42

Proxied requests for metadata do not reflect host header requested

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Complete
    • Affects Version/s: saml-1.0.0
    • Fix Version/s: saml-1.0.0.RC1
    • Component/s: saml
    • Labels:
      None
    • Environment:
      Jetty instance proxied by Pound (http://www.apsis.ch/pound/) reverse proxy. Proxy server responds to requests for multiple virtual hostnames (server1.example.com, server2.example.com, etc).

      Description

      The current implementation caches the first request for metadata. As a result, requests subsequent to the initial request receive metadata referencing an invalid SP hostname in the event that the request is to a different host than the initial request. That is, if the first request is to server1 then all requests for metadata will reference server1 even if server2 was requested.

        Attachments

          Activity

            People

            • Assignee:
              vsch Vladimir Schäfer
              Reporter:
              robmoore Rob Moore
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: