SAML2 Redirect Binding Signature handling should consider that the payload may be signed ---------------------------------------------------------------------------------------- Key: JBID-219 URL: https://jira.jboss.org/jira/browse/JBID-219 Project: JBoss Identity Issue Type: Feature Request Components: Identity-Federation Reporter: Anil Saldhana Assignee: Anil Saldhana Fix For: IDFED-1.0.1 As per spec, the signature handling must consider that the saml payload may be signed at the root. If yes, you need to remove the signature element before generating or validating signature. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira