// Run the policy over the assertion. Handles replay, freshness, and
// signature verification, assuming the relevant rules are configured.
- policy.evaluate(*token);
+ policy.evaluate(*token, &httpRequest);
// If no security is in place now, we kick it.
if (!policy.isAuthenticated())
// Run the policy over the assertion. Handles replay, freshness, and
// signature verification, assuming the relevant rules are configured,
// along with condition and profile enforcement.
- policy.evaluate(*(*a));
+ policy.evaluate(*(*a), &httpRequest);
// If no security is in place now, we kick it.
if (!alreadySecured && !policy.isAuthenticated())
// Run the policy over the assertion. Handles replay, freshness, and
// signature verification, assuming the relevant rules are configured,
// along with condition and profile enforcement.
- policy.evaluate(*(*a));
+ policy.evaluate(*(*a), &httpRequest);
// If no security is in place now, we kick it.
if (!alreadySecured && !policy.isAuthenticated())
// We have to marshall the object first to ensure signatures can be checked.
if (!decrypted->getDOM())
decrypted->marshall();
- policy.evaluate(*decrypted);
+ policy.evaluate(*decrypted, &httpRequest);
// If no security is in place now, we kick it.
if (!alreadySecured && !policy.isAuthenticated())