[英]Validate SAML Assertion against Credential - opensaml 3
I've validated the signature using SAMLSignatureProfileValidator
but from my understanding when I validate a signature using this, it only makes sure the response hasn't been tampered with. 我已经使用SAMLSignatureProfileValidator
验证了签名,但根据我的理解,当我使用此验证签名时,它只确保响应未被篡改。 Ie it checks the structure of the signature to make sure it is well formatted. 即它检查签名的结构以确保其格式良好。
How do I validate the SAML Assertion using the publicKey of a certificate I have from the IdP or a credential? 如何使用IdP或凭证中的证书的publicKey验证SAML断言? Do I have to manually locate the certificate node and compare the value...? 我是否必须手动找到证书节点并比较值...? I am using OpenSAML3 and there is no SignatureValidator
so I can't pass in the pub key. 我正在使用OpenSAML3并且没有SignatureValidator
因此我无法传入pub键。
The Signature validator in OpenSAML V3 is no longer instantiated but instead a static method on SignatureValidator is used for validation. OpenSAML V3中的签名验证器不再实例化,而是使用SignatureValidator上的静态方法进行验证。 Use the SignatureValidator.validate method to validate the signature. 使用SignatureValidator.validate方法验证签名。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.