Skip to Content.
Sympa Menu

mace-opensaml-users - RE: [OpenSAML] Testing SAML relying party browser post profile

Subject: OpenSAML user discussion

List archive

RE: [OpenSAML] Testing SAML relying party browser post profile


Chronological Thread 
  • From: "Pantvaidya, Vishwajit" <>
  • To: "" <>
  • Subject: RE: [OpenSAML] Testing SAML relying party browser post profile
  • Date: Mon, 10 Nov 2008 09:38:57 -0800
  • Accept-language: en-US
  • Acceptlanguage: en-US

Does the test IdP let me provide a secret key as well? I am thinking secret
keys would be primarily (or even only?) used in encryptions and not
signatures - which means they are irrelevant for SAML1.x but could be used
for encryption in SAML2.0. Is this accurate?


- Vish.

-----Original Message-----
From: Pantvaidya, Vishwajit
[mailto:]
Sent: Friday, November 07, 2008 8:05 PM
To:
''
Subject: Re: [OpenSAML] Testing SAML relying party browser post profile

Yes right now I am doing saml1 so encryption is not relevant - but just
wanted to be clear on that as well.

Thanks a lot. I must say that so far my experience migrating to opensaml has
been very smooth and troublefree, due in no small measure to the prompt help
from Brent and Scott and Nate in the forums.

--------------------------
Sent from my BlackBerry Wireless Handheld


----- Original Message -----
From: Brent Putman
<>
To:


<>
Sent: Fri Nov 07 19:37:15 2008
Subject: Re: [OpenSAML] Testing SAML relying party browser post profile



Pantvaidya, Vishwajit wrote:
> Ok - so the test IdP will sign the saml msg using its own private key and I
> can validate that using its public key that it gives me, right?
>
>

Yes.

> And if I need encryption it will encrypt the saml msg using my pub key that
> I give to it when I register. And my SP can decrypt it using my own private
> key right?
>
>



Yes, assuming you're doing SAML 2. SAML 1 didn't support XML Encryption.



Archive powered by MHonArc 2.6.16.

Top of Page