amergey opened a new pull request #60: URL: https://github.com/apache/cxf-fediz/pull/60
I started a discussion, some time ago, in the mailing list, related to signature without KeyInfo (which is valid according to SAML) but not supported by Fediz. At that time I manage to configure the IDP to send KeyInfo, so I forgot about it, but recently this need come back again, but that time no ability to configure the IDP to send KeyInfo. This pull request is a proposal to support this, when KeyInfo is not provided in signature, the validation process iterates through all certificates in trust manager. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
