Signed AuthnRequest

Cantor, Scott cantor.2 at osu.edu
Thu Mar 20 10:23:01 EDT 2014


On 3/20/14, 8:03 AM, "Vasu Y" <vyal2k at yahoo.com> wrote:

>My SP is sending a signed AuthnRequest, but at shibboleth IDP end, i see
>errors.
>AuthnRequests that are not signed are working fine. Also signed Logout
>Requests seems to work fine.

I don't think the IdP omits the Destination check based on whether the
message was signed (though it's of no value in unsigned cases), but
regardless, you are failing to follow the standard and not setting a
Destination attribute.

-- Scott




More information about the users mailing list