Skip to Content.
Sympa Menu

mace-opensaml-users - RE: [OpenSAML] RE: Digital signature not valid

Subject: OpenSAML user discussion

List archive

RE: [OpenSAML] RE: Digital signature not valid


Chronological Thread 
  • From: "Scott Cantor" <>
  • To: <>
  • Subject: RE: [OpenSAML] RE: Digital signature not valid
  • Date: Fri, 28 Aug 2009 11:40:54 -0400
  • Organization: The Ohio State University

Ravi Balasubramanian wrote on 2009-08-28:
> Yes, it is the ID I set to assertion...

Then the xmlsec verifier doesn't know what IDs exist, which is not terribly
unusual. I suspect you're doing SAML 1 and would have to do SAML 2 to get
that online verifier to work by guessing that an attribute called ID is an
XML ID. Patently insecure, but that's common.

-- Scott






Archive powered by MHonArc 2.6.16.

Top of Page