Does SP3 not sign authn requests by default?

[Wessel, Keith]

Agreed that they got unlucky. I have no idea why they turned it on in the SSO element. I don't recall suggesting that to them, and they didn't recall when or why they they did it that way or even that they did it. Granted, they were the ones who came to me asking me to enable skipping endpoint validation for their SP.

At any rate, thanks.

Keith


-----Original Message-----
From: users <users-bounces at shibboleth.net> On Behalf Of Cantor, Scott
Sent: Thursday, July 26, 2018 9:24 AM
To: Shib Users <users at shibboleth.net>
Subject: RE: Does SP3 not sign authn requests by default?

> Shall I file this as a bug and let you decide if it's worth fixing? If 
> it's not fixed, it's probably worth documenting at the least for any 
> unsuspecting folks who could prevent a service interruption if they know about it ahead of time.

I filed it. In practice, documenting it is not going to help a lot because people don't read that first. I thought fixing it was going to be too invasive but it appears to be isolated to one case so it's better to just fix it and move on.

I really think they just got unlucky, we've never done anything anywhere but illustrate turning on signing in the more usual way.

-- Scott

--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net