Skip to Content.
Sympa Menu

metadata-support - [Metadata-Support] support for WantAssertionsSigned in FM

Subject: InCommon metadata support

List archive

[Metadata-Support] support for WantAssertionsSigned in FM


Chronological Thread 
  • From: Andrew Morgan <>
  • To:
  • Subject: [Metadata-Support] support for WantAssertionsSigned in FM
  • Date: Fri, 13 Apr 2018 15:01:02 -0700 (PDT)
  • Ironport-phdr: 9a23:bc9l7BSSm/Mworkce/tDpXI6Ndpsv+yvbD5Q0YIujvd0So/mwa6yZheN2/xhgRfzUJnB7Loc0qyK6/umATRIyK3CmUhKSIZLWR4BhJdetC0bK+nBN3fGKuX3ZTcxBsVIWQwt1Xi6NU9IBJS2PAWK8TW94jEIBxrwKxd+KPjrFY7OlcS30P2594HObwlSizexfb1/IA+qoQnNq8IbnZZsJqEtxxXTv3BGYf5WxWRmJVKSmxbz+MK994N9/ipTpvws6ddOXb31cKokQ7NYCi8mM30u683wqRbDVwqP6WACXWgQjxFFHhLK7BD+Xpf2ryv6qu9w0zSUMMHqUbw5Xymp4qF2QxHqlSgHLSY0/m/XhMJukaxVoxyuqBNjzIPPfIGZKOZycr/Bcd4AW2ZMWNtaWSxbAoO7aosCF/YMPeBFoInnuVQPowa1Cw6rBOP1xT9HnHn21rA93uQkFgHGxgMgEMgIsHnPq9X1LrwSUfyvwKbW0DrDcupb1DHg44bGdRAhpOuDXbN2ccfJzkkvDR3KjlqXqYzjJDOVyv4Cs3SF4OZ6S+2glnMnpgdsqTas3schkpTFipwWx1ze6Cl0xIg4Kce4RUJhf9KoDphduzmHO4doQc4uWXxktSI0x7EctpO3ZjUGxZY7yxPZdveJaZKH4gj5W+aUOTp4hGxqeLa4hxuq6kigz/H8VtGt3FZUtipJjsfAumoW1xzS5ciLUPx9/l2/1jaA0ADT7PpEIVwumqrHNZEt2KA/mYcOsUjbHy/2nlv5jLOOe0k55OSl6P7rbqjiq5KSLYN5ihvyProwlsG8Geg4NxIBX2mf+eSyzr3j+kj5Ta1Pjv0xiKnZv4rVJcIAq66+GQ9VyZoj5wyhADi7zdQUhWMHI05deBKbk4jpPEnDIPH+DfijhFSslTJrx/fAPrH7BZXNNHfDnK7kfblj905T0hc8wspD551OE70BO+/zWlfptNzfFB85Lxe5w+LmCNVmyoMeQnyDDrWYMKPUrV+H+PgvI++Sa48JpjrxMeYq6OPzjSxxpVhIeKS11JcedHn9Bel+O0KDfVLthNwGFGINuEw5VuO5pkeFVGt6YXqoUr10wzYhB4ugRdPGQZqiibqp2z2gAttban0QWQPEKmvha4jRA6REUymVOMI0yjE=
I'm working with a vendor (Qualtrics) that wants me to sign assertions in SAML responses. The Shibboleth IDP default is to sign responses, not assertions. I can override this in relying-party.xml easily, but I'd prefer to avoid customizing my config. The Shibboleth wiki says:

If you need to enable the signAssertions option, and you control the
SP's metadata, you should generally add the WantAssertionsSigned flag to
it in place of using this option.

Is there any plan to support WantAssertionsSigned in the Federation Manager? Qualtrics is an InCommon member, and I get their metadata from the InCommon aggregate.

Thanks,
Andy Morgan
Systems Administrator, Identity & Access Management
Information Services | Oregon State University
541-737-8877 | is.oregonstate.edu

Archive powered by MHonArc 2.6.19.

Top of Page