From b6a057a925bd631779f8c55091aaae0aee1ae203 Mon Sep 17 00:00:00 2001
From: Filip Hanik <fhanik@pivotal.io>
Date: Tue, 17 Sep 2019 08:53:12 -0700
Subject: [PATCH] OpenSAML expects type `long` representing millis for response
 time validation skew

Fixes gh-7448

https://github.com/spring-projects/spring-security/issues/7448
---
 .../service/authentication/OpenSamlAuthenticationProvider.java  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSamlAuthenticationProvider.java b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSamlAuthenticationProvider.java
index a67d36e98d..8def38f4d4 100644
--- a/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSamlAuthenticationProvider.java
+++ b/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSamlAuthenticationProvider.java
@@ -253,7 +253,7 @@ public final class OpenSamlAuthenticationProvider implements AuthenticationProvi
 		validationParams.put(SAML2AssertionValidationParameters.SIGNATURE_REQUIRED, false);
 		validationParams.put(
 				SAML2AssertionValidationParameters.CLOCK_SKEW,
-				this.responseTimeValidationSkew
+				this.responseTimeValidationSkew.toMillis()
 		);
 		validationParams.put(
 				SAML2AssertionValidationParameters.COND_VALID_AUDIENCES,