Skip to content

XML redirect binding should strip signature #21

New issue
New issue
Open
Open
XML redirect binding should strip signature#21
@kanes115

Description

@kanes115
kanes115
opened on Aug 29, 2019

According to the SAML RFC when using redirect binding and encoding method DEFLATE there should be no signature in SAMLRequest. It should be put in the url parameter.

[1] https://docs.oasis-open.org/security/saml/v2.0/saml-bindings-2.0-os.pdf (section 3.4.4.1)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions