Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-1135

The IdP does not sign the SAML2 Logout Response when using HTTP-POST binding when the SP has asked to sign them

    XMLWordPrintable

    Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • Express8, Snapshot9, Snapshot9.5, Snapshot9.5.1, Snapshot9.5.2_RC1, Snapshot9.5.2, 9.5.3_RC1, 9.5.3, 9.5.4_RC1, 9.5.4
    • 9.5.5, 10.0.0
    • SAML
    • None
    • Environments using SAML 2 and HTTP-POST Single Logout
    • Rank:
      1|hzn607:

      Description

      When the IdP has a remote SP configured to get a SAML2 single logout response signed using HTTP-POST. The IDP does not sign the response, because it confuses the "Sign Logout Response" with "Sign Logout Request"

        Attachments

          Activity

            People

            victor Victor Ake
            victor Victor Ake
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: