You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
For a service provider we have activated signature validation for requests and responses in the configuration for SAML2 web SSO.
An AuthnRequest is correctly denied when only the SAMLRequest parameter is present in the redirect Url to the IdentityServer. It works well when additional parameters "SigAlg" and "Signature" are correctly set.
A LogoutRequest can pass successfully without having a deflated signature in the redirect Url.
The SPInitLogoutRequestProcessor seems to ignore the configured validation.
The text was updated successfully, but these errors were encountered:
For a service provider we have activated signature validation for requests and responses in the configuration for SAML2 web SSO.
An AuthnRequest is correctly denied when only the SAMLRequest parameter is present in the redirect Url to the IdentityServer. It works well when additional parameters "SigAlg" and "Signature" are correctly set.
A LogoutRequest can pass successfully without having a deflated signature in the redirect Url.
The SPInitLogoutRequestProcessor seems to ignore the configured validation.
The text was updated successfully, but these errors were encountered: