Subject missing from Response
Peter Schober
peter.schober at univie.ac.at
Sun Mar 6 09:37:57 EST 2016
* Doan, Tommy <tdoan at smu.edu> [2016-03-05 23:09]:
> I found the IdP v3 documentation on how to disable assertion signing
> and encryption by relying party ID, and implemented that temporarily
> for this SP. This is very handy indeed, and seems to be far more
> straightforward than attempting to decrypt the Response after the
> fact.
Even better would be using a test instance of the IDP (as to not swamp
your production instance with log entries) and enable DEBUG logging of
the SAML protocol messages in the IDP. That way you get to keep all
security properties intact but can still easily see what is being
sent.
-peter
More information about the users
mailing list