[jira] [Assigned] (FEDIZ-214) OIDC generated already expired id_token

gonzalad (JIRA) Wed, 15 Nov 2017 03:02:24 -0800

     [ 
https://issues.apache.org/jira/browse/FEDIZ-214?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


gonzalad reassigned FEDIZ-214:
------------------------------

    Assignee: gonzalad

> OIDC generated already expired id_token
> ---------------------------------------
>
>                 Key: FEDIZ-214
>                 URL: https://issues.apache.org/jira/browse/FEDIZ-214
>             Project: CXF-Fediz
>          Issue Type: Bug
>          Components: OIDC
>    Affects Versions: 1.4.2
>            Reporter: gonzalad
>            Assignee: gonzalad
>            Priority: Minor
>             Fix For: 1.4.3
>
>
> id_token expiry claim was is computed from SAML token expiry.
> Since SAML token is generated once per OIDC httpSession
> and can be reused for generating multiple id_token, there can be cases
> where the id_token is generated with an already expired claim.
> id_token expiry claim should be computed at id_token generation time.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Assigned] (FEDIZ-214) OIDC generated already expired id_token

Reply via email to