mace-opensaml-users - RE: [OpenSAML] Assertion Decryption
Subject: OpenSAML user discussion
List archive
- From: "Scott Cantor" <>
- To: <>
- Subject: RE: [OpenSAML] Assertion Decryption
- Date: Mon, 15 Mar 2010 21:50:46 -0400
- Organization: The Ohio State University
> encryptedData.getKeyInfo() returns the ds:KeyInfo child element from the
> encrypted data above. The problem occurs when getEncryptedKeys() is
called.
> This method looks for child ds:EncryptedKey child elements. In this case,
> there aren't any ds:EncryptedKey child elements because the ds:KeyInfo
> element only contains a ds:RetrievalMethod child element.
Which doesn't appear to be pointing to anything, so that's pretty strange.
> Am I doing something wrong or is the decryption of assertions in this
format
> not supported yet? If it isn't supported yet, is there an easy way to get
> OpenSAML to put the keys directly in the ds:KeyInfo element of the
encrypted
> data? I'm using OpenSAML 2.3.1.
I can't imagine how you got it to do anything else, but only Brent probably
knows. In any case, if you want code that works the normal way you'll
probably need to look at Shibboleth to find what you're doing differently.
-- Scott
<<attachment: winmail.dat>>
- Assertion Decryption, Dennis Roberts, 03/15/2010
- RE: [OpenSAML] Assertion Decryption, Scott Cantor, 03/15/2010
- Re: [OpenSAML] Assertion Decryption, Brent Putman, 03/15/2010
- Re: [OpenSAML] Assertion Decryption, Brent Putman, 03/15/2010
- Re: [OpenSAML] Assertion Decryption, Dennis Roberts, 03/16/2010
- Re: [OpenSAML] Assertion Decryption, Brent Putman, 03/15/2010
- Re: [OpenSAML] Assertion Decryption, Brent Putman, 03/15/2010
- Re: [OpenSAML] Assertion Decryption, Dennis Roberts, 03/16/2010
- Re: [OpenSAML] Assertion Decryption, Dennis Roberts, 03/16/2010
- RE: [OpenSAML] Assertion Decryption, Scott Cantor, 03/15/2010
Archive powered by MHonArc 2.6.16.