Never send mustUnderstand=<false> .. It is illegal

tvdijen · tvdijen · commit 3ffc27dbeb89 · 2025-12-25T21:07:05.000+01:00
diff --git a/src/XML/ecp/RequestAuthenticated.php b/src/XML/ecp/RequestAuthenticated.php
@@ -93,7 +93,7 @@ public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
 
-        if ($this->getMustUnderstand() !== null) {
+        if ($this->getMustUnderstand() !== null && $this->getMustUnderstand()->toBoolean() !== false) {
             $this->getMustUnderstand()->toAttribute()->toXML($e);
         }
 
diff --git a/tests/SAML2/XML/ecp/RequestAuthenticatedTest.php b/tests/SAML2/XML/ecp/RequestAuthenticatedTest.php
@@ -48,7 +48,7 @@ public static function setUpBeforeClass(): void
     public function testMarshalling(): void
     {
         $ra = new RequestAuthenticated(
-            MustUnderstandValue::fromBoolean(false),
+            MustUnderstandValue::fromBoolean(true),
         );
 
         $this->assertEquals(
@@ -58,6 +58,19 @@ public function testMarshalling(): void
     }
 
 
+    /**
+     */
+    public function testMarshallingMustUnderstandFalseIsIgnored(): void
+    {
+        $ra = new RequestAuthenticated(
+            MustUnderstandValue::fromBoolean(false),
+        );
+
+        $xml = $ra->toXML();
+        $this->assertFalse($xml->hasAttributeNS(C::NS_SOAP_ENV, 'mustUnderstand'));
+    }
+
+
     /**
      */
     public function testUnmarshallingWithMissingActorThrowsException(): void
diff --git a/tests/resources/xml/ecp_RequestAuthenticated.xml b/tests/resources/xml/ecp_RequestAuthenticated.xml
@@ -1 +1 @@
-<ecp:RequestAuthenticated xmlns:ecp="urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" SOAP-ENV:mustUnderstand="0" SOAP-ENV:actor="http://schemas.xmlsoap.org/soap/actor/next" />
+<ecp:RequestAuthenticated xmlns:ecp="urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" SOAP-ENV:mustUnderstand="1" SOAP-ENV:actor="http://schemas.xmlsoap.org/soap/actor/next" />

Original file line number	Diff line number	Diff line change
`@@ -93,7 +93,7 @@ public function toXML(?DOMElement $parent = null): DOMElement`
`93`	`93`	`{`
`94`	`94`	`$e = $this->instantiateParentElement($parent);`
`95`	`95`
`96`		`- if ($this->getMustUnderstand() !== null) {`
	`96`	`+ if ($this->getMustUnderstand() !== null && $this->getMustUnderstand()->toBoolean() !== false) {`
`97`	`97`	`$this->getMustUnderstand()->toAttribute()->toXML($e);`
`98`	`98`	`}`
`99`	`99`
Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-<ecp:RequestAuthenticated xmlns:ecp="urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" SOAP-ENV:mustUnderstand="0" SOAP-ENV:actor="http://schemas.xmlsoap.org/soap/actor/next" />`
	`1`	`+<ecp:RequestAuthenticated xmlns:ecp="urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" SOAP-ENV:mustUnderstand="1" SOAP-ENV:actor="http://schemas.xmlsoap.org/soap/actor/next" />`