From d132a65e5a5985ab4b3dbb27b48232420473441c Mon Sep 17 00:00:00 2001
From: Mark Kaulertz <33390109+m0ark@users.noreply.github.com>
Date: Tue, 11 Nov 2025 17:26:11 +0100
Subject: [PATCH] Fix ADFS IdP Response

RequestSecurityTokenResponse has to contain RequestedSecurityToken instead of RequestSecurityToken element
---
 src/IdP/ADFS.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/IdP/ADFS.php b/src/IdP/ADFS.php
index f19b849..f99d77e 100644
--- a/src/IdP/ADFS.php
+++ b/src/IdP/ADFS.php
@@ -587,9 +587,9 @@ public static function sendResponse(array $state): void
             $assertion = Assertion::fromXML($assertion->toXML());
         }
 
-        $requestSecurityToken = new RequestSecurityToken(null, [$assertion]);
+        $requestedSecurityToken = new RequestedSecurityToken($assertion);
         $appliesTo = new AppliesTo([new EndpointReference(new Address($spEntityId))]);
-        $requestSecurityTokenResponse = new RequestSecurityTokenResponse(null, [$requestSecurityToken, $appliesTo]);
+        $requestSecurityTokenResponse = new RequestSecurityTokenResponse(null, [$requestedSecurityToken, $appliesTo]);
 
         $xmlResponse = $requestSecurityTokenResponse->toXML();
         $wresult = $xmlResponse->ownerDocument->saveXML($xmlResponse);