Subject: OpenSAML user discussion
List archive
- From: murali mca <>
- To:
- Subject: SAML signature validation
- Date: Thu, 19 Nov 2009 04:44:12 +0530 (IST)
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.co.in; h=Message-ID:X-YMail-OSG:Received:X-Mailer:Date:From:Subject:To:MIME-Version:Content-Type; b=evbnwd+j3z8bJBaW8GLMFBg7IFazTVqDJt2qIaqHGbCthlDUQBJ6WnacHDU20WBj3a4KIi/9n94lth14TmIF4F8LwJCUbH4nGudAOwxvXTW1iBCnEKjhLc2hM2TvuD8ihAHAOCylsuYDjfhLZFtfAPrTDnWRt2xAqaZkNNy2McE=;
Hi,
I am using the below code fragment to verify the signature in SAML and getting the error. Can someone help me to find the reason for this error?
Signature signatureToValidate = assertion.getSignature();
SAMLSignatureProfileValidator profileValidator = new SAMLSignatureProfileValidator();
try {
profileValidator.validate(signatureToValidate);
} catch (ValidationException ve) {
ve.printStackTrace();
}
Error:
18-Nov-2009 22:40:17 org.opensaml.security.SAMLSignatureProfileValidator validateTransforms
SEVERE: Signature was missing the required Enveloped signature transform
org.opensaml.xml.validation.ValidationException: Transforms did not contain the required enveloped transform
at org.opensaml.security.SAMLSignatureProfileValidator.validateTransforms(SAMLSignatureProfileValidator.java:198
)
at org.opensaml.security.SAMLSignatureProfileValidator.validateSignatureImpl(SAMLSignatureProfileValidator.java:
83)
at org.opensaml.security.SAMLSignatureProfileValidator.validate(SAMLSignatureProfileValidator.java:52)
at org.apache.jsp.service_005fprovider_jsp._jspService(service_005fprovider_jsp.java:191)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:98)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:331)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:329)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:265)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:269)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:188)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:172)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:108)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:174)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:873)
at org.apache.coyote.http11.Http11BaseProtocol$Http11ConnectionHandler.processConnection(Http11BaseProtocol.java
:665)
at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:528)
at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:81)
at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:689)
at java.lang.Thread.run(Thread.java:619)
Thanks
Murali
|
Connect more, do more and share more with Yahoo! India Mail.
Learn more.
- SAML signature validation, murali mca, 11/18/2009
Archive powered by MHonArc 2.6.16.
