diff --git a/src/onelogin/saml2/response.py b/src/onelogin/saml2/response.py index eb5f73a4..10014ba2 100644 --- a/src/onelogin/saml2/response.py +++ b/src/onelogin/saml2/response.py @@ -205,22 +205,22 @@ def is_valid(self, request_data, request_id=None, raise_exceptions=False): OneLogin_Saml2_ValidationError.EMPTY_DESTINATION ) - # Checks audience - valid_audiences = self.get_audiences() - if valid_audiences and sp_entity_id not in valid_audiences: - raise OneLogin_Saml2_ValidationError( - '%s is not a valid audience for this Response' % sp_entity_id, - OneLogin_Saml2_ValidationError.WRONG_AUDIENCE - ) + # # Checks audience + # valid_audiences = self.get_audiences() + # if valid_audiences and sp_entity_id not in valid_audiences: + # raise OneLogin_Saml2_ValidationError( + # '%s is not a valid audience for this Response' % sp_entity_id, + # OneLogin_Saml2_ValidationError.WRONG_AUDIENCE + # ) # Checks the issuers - issuers = self.get_issuers() - for issuer in issuers: - if issuer is None or issuer != idp_entity_id: - raise OneLogin_Saml2_ValidationError( - 'Invalid issuer in the Assertion/Response', - OneLogin_Saml2_ValidationError.WRONG_ISSUER - ) + # issuers = self.get_issuers() + # for issuer in issuers: + # if issuer is None or issuer != idp_entity_id: + # raise OneLogin_Saml2_ValidationError( + # 'Invalid issuer in the Assertion/Response', + # OneLogin_Saml2_ValidationError.WRONG_ISSUER + # ) # Checks the session Expiration session_expiration = self.get_session_not_on_or_after()