mace-opensaml-users - Clarifying: if *signing*, then don't use SAML 1.0 ?
Subject: OpenSAML user discussion
List archive
- From:
- To:
- Subject: Clarifying: if *signing*, then don't use SAML 1.0 ?
- Date: Fri, 22 Jul 2005 13:43:06 -0400 (EDT)
I wanted to check if I misunderstood part of thread on this list, it sounded
like one should not use OpenSAML to sign Response objects if one is using
SAML 1.0. Rather, it sounds like OpenSAML should be set to use SAML 1.1 if
one is creating and signing Responses. So I wanted to check, if that right?
One more clarifying question, is it safe to say that even if OpenSAML should
only use SAML 1.1 to *sign* Responses, it nevertheless is fine for consuming
and *verifying* SAML 1.0 Responses?
(I did skim through past threads, but couldn't quite find a definitive
answer. I apologize in advance if I missed something)
- Clarifying: if *signing*, then don't use SAML 1.0 ?, cole . thompson, 07/22/2005
- RE: Clarifying: if *signing*, then don't use SAML 1.0 ?, Scott Cantor, 07/22/2005
Archive powered by MHonArc 2.6.16.