samlAuthzDecisionStatement elements are not being created for Policy Engine when not supplied in Entity assertion

Description

In the samlAuthzDecisionStatement element of the SAML Assertion, the following 3 elements are not required / not used.

<urn3:decision>Permit</urn3:decision>
<urn3:resource>https://1.1.1.1:8181/SamlReceiveService/SamlProcessWS</urn3:resource>
<urn3:action>TestSaml</urn3:action>

If a user were to omit these elements in the assertion block, they would not be generated to be passed into Policy Engine. These should be pulled from elsewhere to populate the fields if they were omitted in the Entity message.

This is a result from findings of CONN‌-1853 In authzDecisionStatement, the passed in assertion block resource doesn't seem to be used (should be pulled from target URL). 

Resolution Details

None

Assignee

Unassigned

Reporter

Patrick Lobre

Labels

None

LOE

Unknown

Reporting Organization

None

Fix versions

Priority

Minor
Configure