https://issues.apache.org/bugzilla/show_bug.cgi?id=45586





--- Comment #11 from Brent Putman <[EMAIL PROTECTED]>  2008-09-19 10:38:55 PST 
---
I think your problem is not with the Reference, but with the SignedInfo.  You
are not using exclusive c14n in the
Signature/SignedInfo/CanonicalizationMethod.

That's pretty much required if you are going to sign the Assertion in a
standalone context and then embed in another context where it will be verified
(e.g. inside a SOAP Envelope).

Most likely, the namespaces defined in the SOAP element parents are leaking
into the inclusively canonicalized SignedInfo, causing validation to fail.


-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Reply via email to