Fix: RequestSecurityTokenType can contains saml-elements

simplesamlphp · Jan 28, 2024 · 742a430 · 742a430
1 parent 6300c9a
commit 742a430
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/src/XML/wst/AbstractRequestSecurityTokenType.php b/src/XML/wst/AbstractRequestSecurityTokenType.php
@@ -6,6 +6,7 @@
 
 use DOMElement;
 use SimpleSAML\Assert\Assert;
+use SimpleSAML\SAML2\XML\saml\Assertion;
 use SimpleSAML\WSSecurity\Constants as C;
 use SimpleSAML\WSSecurity\XML\wsp\AppliesTo;
 use SimpleSAML\WSSecurity\XML\wsp\Policy;
@@ -95,6 +96,11 @@ public static function fromXML(DOMElement $xml): static
         foreach ($xml->childNodes as $child) {
             if (!($child instanceof DOMElement)) {
                 continue;
+            } elseif ($child->namespaceURI === C::NS_SAML) {
+                $children[] = match ($child->localName) {
+                    'Assertion' => Assertion::fromXML($child),
+                    default => Chunk::fromXML($child),
+                };
             } elseif ($child->namespaceURI === C::NS_TRUST) {
                 $children[] = match ($child->localName) {
                     'AllowPostdating' => AllowPostdating::fromXML($child),