shibboleth-dev - Re: [Shib-Dev] Frames/cookies question
Subject: Shibboleth Developers
List archive
- From: Jim Fox <>
- To: "" <>
- Subject: Re: [Shib-Dev] Frames/cookies question
- Date: Mon, 7 Dec 2009 11:09:12 -0800 (PST)
Agreed. Though its tempting to try and exploit this loophole. Right now, I
know that if my login servlet can't figure out which SP the request came
from, either the user bookmarked or I'm being framed. I've resorted to
checking for frames and redirecting the user the main SP resource if I'm
framed since by that time, I've lost any AuthnRequest info.
Are you trying to allow an IdP login from within an iframe? How would the user verify the IdP's URL?
Jim
- Frames/cookies question, Scott Cantor, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Paul Hethmon, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Paul Hethmon, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Chad La Joie, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Paul Hethmon, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Jim Fox, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Message not available
- Re: [Shib-Dev] Frames/cookies question, Adam Lantos, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Jim Fox, 12/07/2009
- Message not available
- Re: [Shib-Dev] Frames/cookies question, Adam Lantos, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Message not available
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Message not available
- Message not available
- Re: [Shib-Dev] Frames/cookies question, Adam Lantos, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Paul Hethmon, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Message not available
- Message not available
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Bernd Oberknapp, 12/07/2009
- RE: [Shib-Dev] Frames/cookies question, Scott Cantor, 12/07/2009
- Re: [Shib-Dev] Frames/cookies question, Paul Hethmon, 12/07/2009
Archive powered by MHonArc 2.6.16.