简体繁体 English

根据Credential验证SAML断言 - opensaml 3

[英]Validate SAML Assertion against Credential - opensaml 3

原文 2017-03-03 18:27:23 3 1 java/ validation/ saml-2.0/ opensaml

I've validated the signature using SAMLSignatureProfileValidator but from my understanding when I validate a signature using this, it only makes sure the response hasn't been tampered with. 我已经使用SAMLSignatureProfileValidator验证了签名，但根据我的理解，当我使用此验证签名时，它只确保响应未被篡改。 Ie it checks the structure of the signature to make sure it is well formatted. 即它检查签名的结构以确保其格式良好。

How do I validate the SAML Assertion using the publicKey of a certificate I have from the IdP or a credential? 如何使用IdP或凭证中的证书的publicKey验证SAML断言？ Do I have to manually locate the certificate node and compare the value...? 我是否必须手动找到证书节点并比较值...？ I am using OpenSAML3 and there is no SignatureValidator so I can't pass in the pub key. 我正在使用OpenSAML3并且没有SignatureValidator因此我无法传入pub键。

1 个解决方案

The Signature validator in OpenSAML V3 is no longer instantiated but instead a static method on SignatureValidator is used for validation. OpenSAML V3中的签名验证器不再实例化，而是使用SignatureValidator上的静态方法进行验证。 Use the SignatureValidator.validate method to validate the signature. 使用SignatureValidator.validate方法验证签名。

使用 OpenSAML 3 的 SAML 断言验证 - SAML Assertion Validation using OpenSAML 3

SAML Spring示例：签名未针对凭据的密钥进行验证 - SAML Spring Sample: Signature did not validate against the credential's key

通过OpenSAML中的现有元素创建SAML 2.0断言 - Create SAML 2.0 assertion by existing element in OpenSAML

如何使用opensaml验证（azure）saml xml响应？ - How to validate (azure) saml xml response with opensaml?

使用OpenSAML在Java中使用SAML 2.0解密加密的断言 - Decrypting encrypted assertion using SAML 2.0 in java using OpenSAML

如何在 Java 中使用 OpenSAML 库创建有效的 SAML 2.0 断言 - How to create a valid SAML 2.0 Assertion with OpenSAML library in Java

无法使用ColdFusion验证SAML断言 - Unable to validate SAML assertion with ColdFusion

GAE + SAML + JAVA + OpenSAML - GAE + SAML + JAVA + OpenSAML

SAML封送opensaml和Java - SAML marshalling opensaml and java

在 OpenSAML 4 中将断言转换为字符串 - Converting assertion to string in OpenSAML 4

暂无

暂无

声明:本站的技术帖子网页，遵循CC BY-SA 4.0协议，如果您需要转载，请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用 OpenSAML 3 的 SAML 断言验证 - SAML Assertion Validation using OpenSAML 3 SAML Spring示例：签名未针对凭据的密钥进行验证 - SAML Spring Sample: Signature did not validate against the credential's key 通过OpenSAML中的现有元素创建SAML 2.0断言 - Create SAML 2.0 assertion by existing element in OpenSAML 如何使用opensaml验证（azure）saml xml响应？ - How to validate (azure) saml xml response with opensaml? 使用OpenSAML在Java中使用SAML 2.0解密加密的断言 - Decrypting encrypted assertion using SAML 2.0 in java using OpenSAML 如何在 Java 中使用 OpenSAML 库创建有效的 SAML 2.0 断言 - How to create a valid SAML 2.0 Assertion with OpenSAML library in Java 无法使用ColdFusion验证SAML断言 - Unable to validate SAML assertion with ColdFusion GAE + SAML + JAVA + OpenSAML - GAE + SAML + JAVA + OpenSAML SAML封送opensaml和Java - SAML marshalling opensaml and java 在 OpenSAML 4 中将断言转换为字符串 - Converting assertion to string in OpenSAML 4

相关标签

粤ICP备18138465号 © 2020-2024 STACKOOM.COM