From d6cac45820cee327314738fdd2dd7c2d714fb1a8 Mon Sep 17 00:00:00 2001 From: Ross Kinder Date: Tue, 31 Jul 2018 20:59:38 -0400 Subject: [PATCH] make MaxIssueDelay configurable at runtime (mini-hack) --- service_provider.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/service_provider.go b/service_provider.go index 1043d01c..dd92f2bc 100644 --- a/service_provider.go +++ b/service_provider.go @@ -87,7 +87,7 @@ type ServiceProvider struct { // issued by the IDP and the time it is received by ParseResponse. This is used // to prevent old responses from being replayed (while allowing for some clock // drift between the SP and IDP). -const MaxIssueDelay = time.Second * 90 +var MaxIssueDelay = time.Second * 90 // MaxClockSkew allows for leeway for clock skew between the IDP and SP when // validating assertions. It defaults to 180 seconds (matches shibboleth).