Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sign AuthnRequest #504

Closed
lawrencedesign opened this issue Jan 10, 2022 · 5 comments
Closed

Sign AuthnRequest #504

lawrencedesign opened this issue Jan 10, 2022 · 5 comments

Comments

@lawrencedesign
Copy link

Hi All!

How can I config my SP to put a signature inside the AuthnRequest?
There is a setting called: authnRequestsSigned, but I can't make it do the job.

Thanks.
@pitbulk
Copy link
Contributor

pitbulk commented Jan 11, 2022

In addition to the authnRequestsSigned flag, you will need to provide at the settings the SP private key and SP public cert.
https://github.com/onelogin/php-saml/blob/master/settings_example.php#L64

@lawrencedesign
Copy link
Author

I provided the SP private key and Cert. Nothing happened. Check the request xml and no signature fields. I have to put the signature inside the request.
I search inside your code and no sign function for authnrequest, just for metadata.

@pitbulk
Copy link
Contributor

pitbulk commented Jan 13, 2022

AuthNRequest is sent using HTTP-Redirect binding, have you verified here is no Signature GET parameter?

@lawrencedesign
Copy link
Author

I have to send AuthnRequest with using HTTP-POST binding

@pitbulk
Copy link
Contributor

pitbulk commented Jan 13, 2022

The toolkit does not support to send AuthNRequest via HTTP-POST, but you can extend the AuthNRequest class.

Take a look at: #422

@pitbulk pitbulk closed this as completed Dec 29, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@pitbulk @lawrencedesign