OpenSAML user discussion

[Chris Card <>]

---

> > > Yes, I can see SecurityHelper::loadKeyFromFile() now - I think that's what need.

> > It really depends what you're doing. Using the Filesystem CredentialResolver
> > is basically about the same amount of work, and gives you both keys and
> > certs, and dynamic reload of the material, so it's usually a better choice.

> thanks, I'll bear that in mind. At the moment I'm just trying to write a proof-of-concept program to
> create an AuthnRequest, which seems to be working.

When marshalled, the xml for the AuthnRequest includes this:

          <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
            <ec:InclusiveNamespaces PrefixList="ds saml samlp"/>
          </ds:Transform>

but doesn't include the URI for the ec namespace,  xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#".

The xmlcopyeditor program complained about this when I attempted to validate the AuthnRequest xml against the schema
(/usr/share/xml/opensaml/saml-schema-protocol-2.0.xsd).

Is this a real issue? Or is it just xmlcopyeditor being too picky?

Chris