Bug 3528 - Action Operation Namespace in SAML Authorization Callout
: Action Operation Namespace in SAML Authorization Callout
Status: RESOLVED FIXED
: Java WS Security
Authorization
: 4.0.0
: PC All
: P3 minor
: ---
Assigned To:
:
:
:
:
  Show dependency treegraph
 
Reported: 2005-06-28 11:49 by
Modified: 2005-07-18 14:55 (History)


Attachments


Note

You need to log in before you can comment on or make changes to this bug.


Description From 2005-06-28 11:49:47
When the SAML authz callout makes an authorization request it includes an
Action
element consisting of both a Namespace attribute and a text string. For
operation invocations, the OGSA Authz Service spec defines the proper action
Namespace as:
http://www.gridforum.org/namespaces/2003/06/ogsa-authz/saml/action/operation

but the SAML authz callout currently uses:
http://www.gridforum.org/namespaces/2003/06/ogsa-authorization/saml/action/operation

The class
org.globus.wsrf.impl.security.authorization.SAMLAuthorizationConstants
seems to contain the offending string constant.
------- Comment #1 From 2005-07-18 14:55:25 -------
Fixed in trunk and 4.0 branch.