mace-opensaml-users - Re: Validation on signing of HTTPRedirectDeflateDecoder

Subject: OpenSAML user discussion

List archive

Re: Validation on signing of HTTPRedirectDeflateDecoder

From: Brent Putman <>
To:
Subject: Re: Validation on signing of HTTPRedirectDeflateDecoder
Date: Tue, 18 Sep 2007 18:54:47 -0400

Scott Cantor wrote:

soon.  Do you (or anyone) have or know of any good test vector data with
which to test the simple signing (non-XML signature) use cases?  Known
good test data for both the HTTP-Redirect DEFLATE and the draft
HTTP-POST-SimpleSign bindings would be of use, e.g. the encoded/signed
query string or POST form, and associated key/key pair used for
signing.  I don't trust our encoders (yet) to generate the stuff to test
the validation...  :-)


You could verify your encoder output against this:

http://rnd.feide.no/saml2debug/

Thanks, that's great.

As far as signature test data is concerned, you could use the SP to generate
something, it's been tested a few different times and is known to be
correct.

Ok, I had thought about pursuing that as one option, if you trust it enough. :-)

Re: Validation on signing of HTTPRedirectDeflateDecoder, Brent Putman, 09/18/2007
- RE: Validation on signing of HTTPRedirectDeflateDecoder, Scott Cantor, 09/18/2007
  - RE: Validation on signing of HTTPRedirectDeflateDecoder, Alex Vilensky, 09/18/2007
    - RE: Validation on signing of HTTPRedirectDeflateDecoder, Scott Cantor, 09/19/2007
- RE: Validation on signing of HTTPRedirectDeflateDecoder, Scott Cantor, 09/18/2007
- Message not available
  - Re: Validation on signing of HTTPRedirectDeflateDecoder, Brent Putman, 09/18/2007
    - RE: Validation on signing of HTTPRedirectDeflateDecoder, Scott Cantor, 09/18/2007

List archive

Re: Validation on signing of HTTPRedirectDeflateDecoder