mace-opensaml-users - Re: [OpenSAML] OpenSAML SignatureValidator Issues!
Subject: OpenSAML user discussion
List archive
- From: Brent Putman <>
- To:
- Subject: Re: [OpenSAML] OpenSAML SignatureValidator Issues!
- Date: Mon, 10 Nov 2008 13:18:31 -0500
wrote: Thanks Brent very much .The problem has been solved. :) Glad that you got it working.
Yes, that will definitely cause the failure. Then I encoded the Saml Assertion used Base64 before sending, just as expected, the SignatureValidator.validate(..) passed. Now I want to know whether the Assertion must be encoded before sending to SP? As Scott said, it's determined by the binding that you are using. Most or all of the non-SOAP bindings of SAML usually specify that the SAML data is base64 encoded. One of the reasons is precisely this one, to avoid corrupting the XML when it goes through browsers and so forth. For this and also for other reasons of interoperability with other SAML systems, you probably want to look at conforming to one or more of the defined SAML bindings, rather than trying to invent something new: http://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf --Brent |
- Re: [OpenSAML] OpenSAML SignatureValidator Issues!, Brent Putman, 11/07/2008
- <Possible follow-up(s)>
- Re: Re: [OpenSAML] OpenSAML SignatureValidator Issues!, yangweiqin, 11/09/2008
- Re: [OpenSAML] OpenSAML SignatureValidator Issues!, Brent Putman, 11/10/2008
- Re: Re: Re: [OpenSAML] OpenSAML SignatureValidator Issues!, yangweiqin, 11/09/2008
- RE: Re: Re: [OpenSAML] OpenSAML SignatureValidator Issues!, Scott Cantor, 11/10/2008
- Re: [OpenSAML] OpenSAML SignatureValidator Issues!, Brent Putman, 11/10/2008
- Re: Re: [OpenSAML] OpenSAML SignatureValidator Issues!, yangweiqin, 11/10/2008
Archive powered by MHonArc 2.6.16.