Metadata does not contain signing certificate

Question

Metadata does not contain signing certificate

tvdijen opened this issue 6 years ago · 3 comments

I'd expect it to contain a <KeyDescriptor use="signing"> with the value of saml_sp_publickey (parameters.yml)

Yes

Answer 1 · 2018-05-21T08:56:00.000Z

Agreed. We do not currently check the authnrequest signatures. but since profile signs its authnrequests, it publish the key (or stop signing the requests).

Answer 2 · 2022-05-09T14:32:37.000Z

@thijskh I think this one would be fixed by stepup-saml-bundle 4.4.0, am I right?