openstack/python-keystoneclient
Code Issues Proposed changes

Fix Accept header in SAML2 requests

Browse Source 
The ; separator allows providing parameters to a type not separating
type options. This means that in strict type checks like those performed
by mod_auth_mellon the check for accept type fails.

Change-Id: Ieeaa74b304921daef68497fec77cc6629ab2f0a2
Closes-Bug: #1488722
This commit is contained in:
Jamie Lennox 2015-08-26 12:25:31 +10:00 committed by Steve Martinelli
parent ce7aea4dd0
commit e0276c6536
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
keystoneclient/contrib/auth/v3/saml2.py
View File

@ -126,7 +126,7 @@ class Saml2UnscopedToken(_BaseSAMLPlugin):
SAML2_HEADER_INDEX = 0 SAML2_HEADER_INDEX = 0
ECP_SP_EMPTY_REQUEST_HEADERS = { ECP_SP_EMPTY_REQUEST_HEADERS = {
'Accept': 'text/html; application/vnd.paos+xml', 'Accept': 'text/html, application/vnd.paos+xml',
'PAOS': ('ver="urn:liberty:paos:2003-08";"urn:oasis:names:tc:' 'PAOS': ('ver="urn:liberty:paos:2003-08";"urn:oasis:names:tc:'
'SAML:2.0:profiles:SSO:ecp"') 'SAML:2.0:profiles:SSO:ecp"')
} }