You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Opinion:
So i think what it is wrong to modify signed assertion. Maybe responses are also are not 100% perfect, but o can't modify them.
Maybe php bug in function ->hasAttributeNS dose not detect existing xmlns..
Can you generate self-signed cert and private key, use them on the Idp to generate a fresh new Signed Encrypted Assertion and share untouched encodebased64 SAMLResponse with the self-signed cert and private key to allow me explore?
Document
Incoming saml Response are signed, Assertion also are signed and encrypted.
PHP 8.2.16
Problem
Assertion signature not valid after it are modified with this line:
Document parts examples - response and decrypted assertion:
Main elements:
Auth fails at:
Opinion:
So i think what it is wrong to modify signed assertion. Maybe responses are also are not 100% perfect, but o can't modify them.
Maybe php bug in function ->hasAttributeNS dose not detect existing xmlns..
In result next function write one more $qualifiedName 'xmlns'
Solutions:
The text was updated successfully, but these errors were encountered: