IDPv3 X509Auth - accessing certificate
Cantor, Scott
cantor.2 at osu.edu
Wed Dec 16 15:07:49 EST 2015
On 12/16/15, 3:02 PM, "users on behalf of Emilio Penna" <users-bounces at shibboleth.net on behalf of emilio.penna at seciu.edu.uy> wrote:
>Scott, Tom, thank you for your answers,
>
>I can access now the certificate in a scripted attribute with
>
>cert =
>profileContext.getSubcontext("net.shibboleth.idp.authn.context.SubjectContext").getSubjects().get(0).getPublicCredentials().toArray()[0];
>
>and (for example) get the serial number with:
>
>serial=cert.getSerialNumber();
If you care to, file a RFE so we get something cleaner added to the scripting contexts. I think if we'd realized so many people wanted to dig into the subject we would have exposed something simpler. No reason we can't expose the subject alongside the principal name.
-- Scott
More information about the users
mailing list