Signed AuthnRequest

Vasu Y vyal2k at yahoo.com
Thu Mar 20 10:39:27 EDT 2014


Thanks! It's working fine once i set the Destination attribute of AuthnRequest.
It didn't complain (of Destination attribute missing) for unsigned AuthnRequest though.


________________________________
 From: "Cantor, Scott" <cantor.2 at osu.edu>
To: Shib Users <users at shibboleth.net> 
Sent: Thursday, 20 March 2014 7:53 PM
Subject: Re: Signed AuthnRequest
 

On 3/20/14, 8:03 AM, "Vasu Y" <vyal2k at yahoo.com> wrote:


>My SP is sending a signed AuthnRequest, but at shibboleth IDP end, i see
>errors.
>AuthnRequests that are not signed are working fine. Also signed Logout
>Requests seems to work fine.

I don't think the IdP omits the Destination check based on whether the
message was signed (though it's of no value in unsigned cases), but
regardless, you are failing to follow the standard and not setting a
Destination attribute.

-- Scott


--
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20140320/5916b6df/attachment.html 


More information about the users mailing list