mace-opensaml-users - RE: SAML signature reference
Subject: OpenSAML user discussion
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: SAML signature reference
- Date: Fri, 6 Apr 2007 22:03:50 -0400
- Organization: The Ohio State University
> I debated whether the transforms should be directly manipulatable. Per
> the SAML spec, the transforms SHOULD consist only of the enveloped
> signature transform and exclusive canonicalization transform (with or
> without comments), but it's not a MUST. I suppose we might revisit and
> make the only transforms option a boolean toggle of with/without comments
> for the exclusive c14n.
I stuck with a fixed set, but made the c14n algorithm settable. If you
really need a custom transform set, that really should be a different
reference object, IMHO, but it doesn't really matter that much.
Theoretically, we should probably block the use of that object with SAML 1.0
objects, though. It will just lead to errors (per the other note).
-- Scott
- SAML signature reference, Laurent CHARTIER, 04/06/2007
- RE: SAML signature reference, Scott Cantor, 04/06/2007
- Message not available
- RE: SAML signature reference, Scott Cantor, 04/06/2007
- Message not available
- Message not available
- Re: SAML signature reference, Brent Putman, 04/06/2007
- RE: SAML signature reference, Scott Cantor, 04/06/2007
- Message not available
- RE: SAML signature reference, Scott Cantor, 04/06/2007
- Re: SAML signature reference, Brent Putman, 04/06/2007
- Message not available
Archive powered by MHonArc 2.6.16.