[prev in list] [next in list] [prev in thread] [next in thread] 

List:       shibboleth-users
Subject:    Re: Ex: endpoint security handler error
From:       "Paul B. Henson via users" <users () shibboleth ! net>
Date:       2024-04-24 1:19:46
Message-ID: ZiheMspBxArVY48f () bender ! cpp ! edu
[Download RAW message or body]

On Tue, Apr 23, 2024 at 06:14:54PM -0700, IAM David Bantz wrote:

> The request was signed (though their metadata has
> AuthnRequestsSigned="false")

That just means the idp won't refuse to process an unsigned one, but I
vaguely recall that if a signed one still shows up it will process it as
signed, not just ignore the signature, regardless of the metadata
setting.


-- 
Paul B. Henson  |  (909) 979-6361  |  http://www.cpp.edu/~henson/
Operating Systems and Network Analyst  |  henson@cpp.edu
California State Polytechnic University  |  Pomona CA 91768
-- 
For Consortium Member technical support, see https://shibboleth.atlassian.net/wiki/x/ZYEpPw
To unsubscribe from this list send an email to users-unsubscribe@shibboleth.net

[prev in list] [next in list] [prev in thread] [next in thread]