Skip to content

Commit

Permalink
Compatibility flag should not affect LogoutRequests
Browse files Browse the repository at this point in the history
  • Loading branch information
@AndersAbel
AndersAbel committed Mar 26, 2020
1 parent 341c884 commit cd2d62d
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions Sustainsys.Saml2/WebSSO/LogOutCommand.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -83,17 +83,17 @@ public static CommandResult Run(
var unbindResult = binding.Unbind(request, options);
options.Notifications.MessageUnbound(unbindResult);

if (!options.SPOptions.Compatibility.AcceptUnsignedLogoutResponses)
{
VerifyMessageIsSigned(unbindResult, options);
}

switch (unbindResult.Data.LocalName)
{
case "LogoutRequest":
VerifyMessageIsSigned(unbindResult, options);
commandResult = HandleRequest(unbindResult, options);
break;
case "LogoutResponse":
if (!options.SPOptions.Compatibility.AcceptUnsignedLogoutResponses)
{
VerifyMessageIsSigned(unbindResult, options);
}
var storedRequestState = options.Notifications.GetLogoutResponseState(request);
var urls = new Saml2Urls(request, options);
commandResult = HandleResponse(unbindResult, storedRequestState, options, returnUrl, urls);
Expand Down

0 comments on commit cd2d62d

Please sign in to comment.