Key comparison too strict, cred may not contain actual key.

author Scott Cantor <cantor.2@osu.edu>

Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)

committer Scott Cantor <cantor.2@osu.edu>

Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)
author Scott Cantor <cantor.2@osu.edu>
Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)
committer Scott Cantor <cantor.2@osu.edu>
Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)
diff --git a/xmltooling/security/impl/Credential.cpp b/xmltooling/security/impl/Credential.cpp

index 024e8bd..9e759bd 100644 (file)
--- a/xmltooling/security/impl/Credential.cpp
+++ b/xmltooling/security/impl/Credential.cpp
@@ -71,7 +71,7 @@ bool Credential::matches(const CredentialCriteria& criteria) const
  
      XSECCryptoKey* key2 = getPublicKey();
      if (!key2)
-        return false;   // no key here, so we can't possibly match the criteria
+        return true;   // no key here, so we can't test it
  
      if (key1->getProviderName()!=DSIGConstants::s_unicodeStrPROVOpenSSL ||
          key2->getProviderName()!=DSIGConstants::s_unicodeStrPROVOpenSSL) {
author	Scott Cantor <cantor.2@osu.edu>
	Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)
committer	Scott Cantor <cantor.2@osu.edu>
	Fri, 13 Apr 2007 01:35:27 +0000 (01:35 +0000)