XMLSecTool metadata validation problem because of soap/envelope https redirect

Cantor, Scott cantor.2 at osu.edu
Mon Apr 11 12:12:24 UTC 2022

That would be a bug, xmlsectool shouldn't need to be goong anywhere for anything. Network lookup is just inherently a bad idea.

The locations in the file you mentioned are also not relevant for xmlsectool, those are for the SP. I guess if you manually did something to incorporate them it might be an issue but that's not the intention. And the locations in the SP catalogs and files are abstracted ones, not physical ones. They're turned into local lookups, and no remote lookups are ever permitted.

-- Scott

More information about the users mailing list