[overlord-issues] [JBoss JIRA] (SRAMP-436) Overlord SSO (IDP/SP) needs to have SAML assertion sigs enabled by default
[
https://issues.jboss.org/browse/SRAMP-436?page=com.atlassian.jira.plugin....
]
Eric Wittmann commented on SRAMP-436:
-------------------------------------
It appears that the keystore config is stored in picketlink.xml, which is located in the
IDP WAR and the SP WAR. Fortunately there is a picketlink keystorekeymanager interface
which I can implement to allow external configuration. In other words, I don't want
users to have to crack open WAR files and modify picketlink.xml just to change the SAML
signature config.
Overlord SSO (IDP/SP) needs to have SAML assertion sigs enabled by
default
--------------------------------------------------------------------------
Key: SRAMP-436
URL: https://issues.jboss.org/browse/SRAMP-436
Project: S-RAMP
Issue Type: Enhancement
Security Level: Public(Everyone can see)
Reporter: Eric Wittmann
Assignee: Eric Wittmann
Fix For: 0.5.0.Final
Original Estimate: 2 days
Remaining Estimate: 2 days
Currently we're not signing the saml assertions. We need to do that.
--
This message was sent by Atlassian JIRA
(v6.2.6#6264)