mace-opensaml-users - Re: [OpenSAML] Using Holder of Key with Digital Signature
Subject: OpenSAML user discussion
List archive
- From: Deena Gurajala <>
- To:
- Subject: Re: [OpenSAML] Using Holder of Key with Digital Signature
- Date: Tue, 28 Jul 2009 13:47:12 -0700
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=dNpLj4aGJkP4goKW6AAtFESaXhs3EfVNcBzKRoLxGD1ev+DzmRuqtJ/tC+fRASLJZ6 NYs2RySTcLz2+xXqxsyJ2BjUW7HQ6JxvQwnLc3oqdVOAGurEx7ttLIGck4nlhxZC6uAU 3llzwvnxle1lVmQQZ77U//wHgqc9hyw21illc=
Hi Scott,
I am sorry for my bad English. But can you give me direction to add Holder of key confirmation data to an Authentication request? Because the signature verification is failing only when I add Subject confirmation Data to the request. Otherwise it is working fine.
On Tue, Jul 28, 2009 at 12:54 PM, Scott Cantor <> wrote:
> I am trying to create an AuthenticationRequest with openSAML. this requestHolder of Key is a term related to assertion subject confirmation, not
> is signed using client private key and contains Holder-of-Key.
requests.
That's not something that can be debugged looking at code, you have to log
> I am able to
> generate the request but signature validation is failing on other side.
the octets being digested by the xmlsec library and compare them to see
what's different and where the problem's coming from.
-- Scott
- Using Holder of Key with Digital Signature, Deena Gurajala, 07/28/2009
- RE: [OpenSAML] Using Holder of Key with Digital Signature, Scott Cantor, 07/28/2009
- Message not available
- Re: [OpenSAML] Using Holder of Key with Digital Signature, Deena Gurajala, 07/28/2009
- Re: [OpenSAML] Using Holder of Key with Digital Signature, Deena Gurajala, 07/28/2009
- RE: [OpenSAML] Using Holder of Key with Digital Signature, Scott Cantor, 07/28/2009
- Re: [OpenSAML] Using Holder of Key with Digital Signature, Deena Gurajala, 07/28/2009
Archive powered by MHonArc 2.6.16.