Check for empty string in correlation property.

[shibboleth/cpp-opensaml.git] / saml / saml2 / profile / impl / BearerConfirmationRule.cpp

diff --git a/saml/saml2/profile/impl/BearerConfirmationRule.cpp b/saml/saml2/profile/impl/BearerConfirmationRule.cpp
index b197226..0541c58 100644 (file)
--- a/saml/saml2/profile/impl/BearerConfirmationRule.cpp
+++ b/saml/saml2/profile/impl/BearerConfirmationRule.cpp
@@ -105,7 +105,7 @@ bool BearerConfirmationRule::evaluate(const XMLObject& message, const GenericReq
                     }
                 }
 
-                if (m_correlation && policy.getCorrelationID()) {
+                if (m_correlation && policy.getCorrelationID() && *(policy.getCorrelationID())) {
                     if (!XMLString::equals(policy.getCorrelationID(), data ? data->getInResponseTo() : NULL)) {
                         msg = "bearer confirmation failed with request correlation mismatch";
                         continue;