flask-saml2 icon indicating copy to clipboard operation
flask-saml2 copied to clipboard
verified publisher icon mx-moth

Correct timestamp format

Open alch-emi opened this issue 4 years ago • 2 comments

This makes two changes to the timestamp format used in assertions.

  1. It removes the millisecond component, per issue #23, and
  2. It removes the timezone component, which is explicitly disallowed by the SAML spec (section 1.3.3)

I originally started working on this pull request because I believed my IDP (SimpleSAMLphp) did not tolerate timezones in timestamps, but it turns out that SimpleSAMLphp is actually slightly spec non-compliant itself and requires timestamps to be formatted as having a literal Z at the end.

For now I'm going to use a fork of flask-saml2 to prop up my IDP, and PR the upstream, although this lends credence to @ianlintner-wf's suggestion of making datetimes customizable

Please let me know if you suggest any other changes.

alch-emi avatar Jun 07 '21 19:06 alch-emi

It seems like the checks are failing on an unrelated dependency issue, but please let me know if this is something in my code

alch-emi avatar Jun 07 '21 20:06 alch-emi

I was recently informed that the Z at the end of the timestamp is mandatory, and I've added it to the timestamp

alch-emi avatar Jun 08 '21 13:06 alch-emi