SP upgrade 2.3.1 to 2.4.3: disable signature validation of xml metadata?
Cantor, Scott
cantor.2 at osu.edu
Mon Jun 17 17:04:44 EDT 2013
On 6/17/13 4:59 PM, "Cantor, Scott" <cantor.2 at osu.edu> wrote:
>
>There is no such support, the transport is explicitly ignored by design in
>favor of a signature.
Per usual, there's a caveat to that: you could probably make the
TransportOption feature work to convince libcurl to set options related to
this, and turn back on the VERIFY_PEER/etc. flags and set a CA path.
https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPTransportOptio
n
In addition to messing with SOAP, that can go inside reloadable file
resources like metadata providers.
-- Scott
More information about the users
mailing list