IdP3.2.1 metadata config and requireSignedRoot

Tom Scavo trscavo at
Tue Dec 22 13:24:00 EST 2015

On Tue, Dec 22, 2015 at 1:01 PM, Cantor, Scott <cantor.2 at> wrote:
> On 12/22/15, 12:55 PM, "users on behalf of Michael A Grady" <users-bounces at on behalf of mgrady at> wrote:
>>The wiki docs still show the former, don't see any mention of requireSignedRoot. But I thought I'd see if I could substitute it "as is" for 'requireSignedMetadata', but then the IdP seemed to have trouble getting the metadata, seeming to complain about accessing '' (unless there just happened to be a connection problem then). Is there more to using 'requireSignedRoot' then just substituting it directly for 'requireSignedMetadata'?
> Don't think so. I think Brent renamed it because it was ambiguously named, and wasn't really meaning what it said.

Well, I'd like to read the documentation since I don't see any
additional clarity in the new syntax.


More information about the users mailing list