OpenSAML user discussion

[Chad La Joie <>]

I agree.  Both XML signature and encryption have a lot of "black magic" 
type settings.

In this specific case I propose we use the Exclusive w/ comment C14N 
algo as the default.

Scott, Brent, what do you think?

Dimuthu Leelarathne wrote:
> Hi All,
>
> I think the new opensaml implementation is really good. It has good
> javadocs and very intuitive.
>
> I'd like to put forward my idea as a user. If you guys can set a default
> CanonicalizationAlgorithm to the Signature object, it will be good. 
>
> I am saying that because when using opensaml-1.0 I was unaware of the
> the canonicalization method, and when using the new library, in order to
> fix a signature verification problem I had to read about the four C14N
> canonicalization methods.
>
> Thank you,
> Dimuthu

--
SWITCH
Serving Swiss Universities
--------------------------
Chad La Joie, Software Engineer, Security
Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
phone +41 44 268 15 75, fax +41 44 268 15 68
,
 http://www.switch.ch