TouchInstinct
/
java-cas-client
303
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

CASC-129 

updated exception message thrown when there no valid assertions to better indicate that it may be a clock drift issue.
This commit is contained in:
Scott Battaglia 2010-10-13 02:51:53 +00:00
parent ff5a99ea0a
commit 54964cb5a4
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
cas-client-core/src/main/java/org/jasig/cas/client/validation/Saml11TicketValidator.java
View File

@ -54,6 +54,7 @@ public final class Saml11TicketValidator extends AbstractUrlBasedTicketValidator
throw new TicketValidationException("No assertions found.");
}
boolean foundValidAssertion = false;
for (final Iterator iter = samlResponse.getAssertions(); iter.hasNext();) {
final SAMLAssertion assertion = (SAMLAssertion) iter.next();
@ -95,7 +96,7 @@ public final class Saml11TicketValidator extends AbstractUrlBasedTicketValidator
throw new TicketValidationException(e);
}
throw new TicketValidationException("No valid assertions from the SAML response found.");
throw new TicketValidationException("No Assertion found within valid time range. Either there's a replay of the ticket or there's clock drift. Check tolerance range, or server/client synchronization.");
}
private boolean isValidAssertion(final SAMLAssertion assertion) {