shibboleth-dev - Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature
Subject: Shibboleth Developers
List archive
- From: Chad La Joie <>
- To:
- Subject: Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature
- Date: Thu, 30 Oct 2008 11:19:38 +0100
- Openpgp: id=146B2514
- Organization: SWITCH
Yeah, it would. And it will occur whether you use a front-channel
attribute-push or back-channel attribute query.
Kristof BAJNOK wrote:
> On Thursday 30 October 2008 Kristof BAJNOK wrote:
>> I can confirm that something screws up the Response before it gets base64
>> encoded when Tomcat is started with POSIX locale. Even Shib SP fails when
>> the Assertion is not encrypted. (Although it works fine with
>> EncryptedAssertion)
>
> It's happening after signing (and optionally encryption), that's why it
> seemed to be a signature problem. It's indeed a base64 (transfer encoding)
> problem. This would result in mangled attribute values if no signature
> validation took place.
>
> Kristof
--
SWITCH
Serving Swiss Universities
--------------------------
Chad La Joie, Software Engineer, Net Services
Werdstrasse 2, P.O. Box, 8021 Zürich, Switzerland
phone +41 44 268 15 75, fax +41 44 268 15 68
,
http://www.switch.ch
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, (continued)
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Kristof BAJNOK, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Chad La Joie, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Kristof BAJNOK, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Chad La Joie, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Adam Lantos, 10/30/2008
- RE: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Scott Cantor, 10/30/2008
- Message not available
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Adam Lantos, 10/30/2008
- RE: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Scott Cantor, 10/30/2008
- Message not available
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Adam Lantos, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Kristof BAJNOK, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Chad La Joie, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Kristof BAJNOK, 10/30/2008
- Re: [Shib-Dev] Shibboleth 2.0 IdP xml digital signature, Chad La Joie, 10/30/2008
Archive powered by MHonArc 2.6.16.