Correct handling of mandatory Environment Attributes in RequestType (urn:oasis:names:tc:xacml:1.0:environment:current-time, urn:oasis:names:tc:xacml:1.0:environment:current-date, urn:oasis:names:tc:xacml:1.0:environment:current-dateTime)

Description

According to XACML 2.0 Spec, Chapter 10.2.5, the attributes

  • urn:oasis:names:tc:xacml:1.0:environment:current-time

  • urn:oasis:names:tc:xacml:1.0:environment:current-date

  • urn:oasis:names:tc:xacml:1.0:environment:current-dateTime
    MUST be supplied by the context handler if not already present.

For HERAS-AF this means the SimplePDP must create the above mentioned attributes if they are not present and enrich the given RequestType.

Environment

None

Activity

Show:
Colm O hEigeartaigh
November 21, 2012, 11:36 AM

Please review the attached patch for this issue. It modifies the RequestType so that the attributes for time/date/dateTime are only added if they do not already exist. The SimplePDP calls this functionality per request. A test is also added.

Colm.

Assignee

Unassigned

Reporter

RenéR

Labels

None

Components

Fix versions

Affects versions

Priority

Major
Configure