On Tue, Oct 6, 2015 at 10:48 PM, Nadeesha Meegoda <[email protected]> wrote:
> Hi Dulanja, > > In the SAML SP configuration for IS 5.1.0 there is no such option to > enable assertion signing. > As Dulanja mentioned, According to SAML spec Assertion Signing is enable by default please look [1] [1] https://wso2.org/jira/browse/IDENTITY-1045 > So how can the SP decide whether to validate that or not? > > > > On Tue, Oct 6, 2015 at 10:43 PM, Dulanja Liyanage <[email protected]> > wrote: > >> Hi Nadeesha, >> >> Assertion Signing option in the IdP UI enables/disables Assertion >> Signature *validation*. The Assertion coming from the external IS will >> be always signed. The IS acting as the SP can decide whether to validate >> that or not. >> >> Thanks >> Dulanja >> >> On Tue, Oct 6, 2015 at 8:35 PM, Nadeesha Meegoda <[email protected]> >> wrote: >> >>> Hi IS team, >>> >>> In is 5.1.0 SAML>SAML federated scenario, I just noticed that in the IDP >>> I created for external IS includes the *Assertion Signing* option where >>> the application registered SAML service provider doesn't have any option as >>> such. When the federated scenario works doesn't both IDP and SPs need to >>> match with those options. Please clarify! >>> >>> Thanks! >>> >>> *Nadeesha Meegoda* >>> Software Engineer - QA >>> WSO2 Inc.; http://wso2.com >>> lean.enterprise.middleware >>> email : [email protected] >>> mobile: +94783639540 >>> <%2B94%2077%202273555> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> Thanks & Regards, >> Dulanja Liyanage >> WSO2 Inc. >> > > > > -- > *Nadeesha Meegoda* > Software Engineer - QA > WSO2 Inc.; http://wso2.com > lean.enterprise.middleware > email : [email protected] > mobile: +94783639540 > <%2B94%2077%202273555> > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Gayan Gunawardana Software Engineer; WSO2 Inc.; http://wso2.com/ Email: [email protected] Mobile: +94 (71) 8020933
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
