SAML2HTTPPostSimpleSignRule
rangeli nepal
rangeli.nepal at gmail.com
Fri Sep 2 04:29:57 BST 2011
Good Evening Everybody,
I am trying to use SAML2HTTPPostSimpleSignRule. I see following log
[BaseSAMLSimpleSignatureSecurityPolicyRule] HTTP request was not
signed via simple signature mechanism, skipping
I look at the BaseSAMLSimpleSignatureSecurityPolicyRule.java,
I see following section of code. It seems this code is trying to get
data from request. I am under the impression that in Post binding
Signature is inside the mesage not outside as in redirect bining. If
that is true , how following code will work. I must be missing
something.
Any elaboration will be highly appreciated.
Thank you.
rn
protected byte[] getSignature(HttpServletRequest request) throws
SecurityPolicyException {
String signature = request.getParameter("Signature");
if (DatatypeHelper.isEmpty(signature)) {
return null;
}
return Base64.decode(signature);
}
More information about the users
mailing list