Avoid looping over assertions (there will always be just one there)

mauromol · mauromol · commit 25fab2e19f19 · 2021-08-18T11:33:12.000+02:00
diff --git a/core/src/main/java/com/onelogin/saml2/authn/SamlResponse.java b/core/src/main/java/com/onelogin/saml2/authn/SamlResponse.java
@@ -243,11 +243,9 @@ public boolean isValid(String requestId) {
 
 				// Check SAML version on the assertion
 				NodeList assertions = queryAssertion("");
-				for(int i = 0; i < assertions.getLength(); i++) {
-					Node versionAttribute = assertions.item(i).getAttributes().getNamedItem("Version");
-					if (versionAttribute == null || !"2.0".equals(versionAttribute.getNodeValue())) {
-						throw new ValidationError("Unsupported SAML Version on Assertion.", ValidationError.UNSUPPORTED_SAML_VERSION);
-					}
+				Node versionAttribute = assertions.item(0).getAttributes().getNamedItem("Version");
+				if (versionAttribute == null || !"2.0".equals(versionAttribute.getNodeValue())) {
+					throw new ValidationError("Unsupported SAML Version on Assertion.", ValidationError.UNSUPPORTED_SAML_VERSION);
 				}
 
 				if (!this.encrypted && settings.getWantAssertionsEncrypted()) {
