Missing attribute from SAML2 response
David Bantz
dabantz at alaska.edu
Wed Nov 7 14:08:30 EST 2012
Oops - thanks Scott.
On Wed, 7 Nov 2012, at 09:06 , "Cantor, Scott" <cantor.2 at osu.edu> wrote:
> On 11/7/12 12:00 PM, "David Bantz" <dabantz at alaska.edu> wrote:
>
>> Prior to the block of encrypted data in the logs should be something like
>> 'SAML assertion to be encrypted:' with the clear-text SAML assertion.
>
> On the IdP, yes, but he's on the other end. The SP logs provide enough
> evidence of whether an attribute is included without needing the IdP log
> or the decrypted assertion (though all recent/supported versions do log
> the decrypted assertion).
>
> -- Scott
>
>
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list