From d3593442b3eb8b650798e9b056123dcd1f26730c Mon Sep 17 00:00:00 2001
From: cantor <cantor@cb58f699-b61c-0410-a6fe-9272a202ed29>
Date: Wed, 20 Jul 2005 02:38:01 +0000
Subject: [PATCH] Log failures instead of just bubbling them back to httpd.

git-svn-id: https://svn.middleware.georgetown.edu/cpp-sp/trunk@1768 cb58f699-b61c-0410-a6fe-9272a202ed29
---
 shib/ShibBrowserProfile.cpp | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/shib/ShibBrowserProfile.cpp b/shib/ShibBrowserProfile.cpp
index 663d5ad..869df11 100644
--- a/shib/ShibBrowserProfile.cpp
+++ b/shib/ShibBrowserProfile.cpp
@@ -126,6 +126,7 @@ SAMLBrowserProfile::BrowserProfileResponse ShibBrowserProfile::receive(
             log.debug("passing signed response to trust layer");
             if (!t.validate(*bpr.response,role)) {
                 bpr.clear();
+                log.error("unable to verify signed profile response");
                 TrustException ex("unable to verify signed profile response");
                 annotateException(&ex,role); // throws it
             }
@@ -135,6 +136,7 @@ SAMLBrowserProfile::BrowserProfileResponse ShibBrowserProfile::receive(
             log.debug("passing signed authentication assertion to trust layer"); 
             if (!t.validate(*bpr.assertion,role)) {
                 bpr.clear();
+                log.error("unable to verify signed authentication assertion");
                 TrustException ex("unable to verify signed authentication assertion");
                 annotateException(&ex,role); // throws it
             }
-- 
2.1.4