mace-opensaml-users - Re: [OpenSAML] XML Signature issue in openSAML1.1
Subject: OpenSAML user discussion
List archive
- From: Chad La Joie <>
- To:
- Subject: Re: [OpenSAML] XML Signature issue in openSAML1.1
- Date: Tue, 20 Oct 2009 10:13:07 +0200
- Organization: SWITCH
Whitespace breaks signatures. It's not a bug of the library. Also, OpenSAML 1.1 is dead and no longer supported.
wrote:
I am using openSAML1.1 for generating SAML 1.0 assertions and signing
it. I realised that openSAML1.1 by default uses
http://www.w3.org/2001/10/xml-exc-c14n# algorithm for canonicalization.
Since XML canonicalization is used, inserted a space between two
elements in a signed assertion and with this signature validation
started failing. Why is the signature validation failing ?? According to
my undersatnding a space between two XML elements shouldn't have
contributed to the digest value when canonicalization is used. If this
is a known issue, is it fixed in opensaml 2.X ??
Thanks,
Bharath
--
SWITCH
Serving Swiss Universities
--------------------------
Chad La Joie, Software Engineer, Net Services
Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
phone +41 44 268 15 75, fax +41 44 268 15 68
,
http://www.switch.ch
- XML Signature issue in openSAML1.1, bharath.krishnappa, 10/20/2009
- Re: [OpenSAML] XML Signature issue in openSAML1.1, Chad La Joie, 10/20/2009
- SPSSODescriptorSchemaValidator bug, Bernd Zwattendorfer, 10/20/2009
- Re: [OpenSAML] SPSSODescriptorSchemaValidator bug, Chad La Joie, 10/20/2009
Archive powered by MHonArc 2.6.16.