4 Replies Latest reply: Apr 19, 2012 7:21 AM by Alex Jacinto RSS

SAML 1.1 and Signatures

Pipo Pipo Newbie



I am busy looking at the new features of Picketlink 2.02 and one caught my eye. The implementation

of SAML 1.1. As I looked into the examples and the source I can not see any code dedicated to signatures

checking or configuration. Is this correct? And yes, do you plan to support signatures in the near

future with SAML 1.1 as without signatures the implementation is about useless for us as it is

to easy to spoof a SAMLResponse this way and hack the system.




Kind regrards,



ADP PersonnelView