saml:LogoutResponse - at a HTTP-POST binding i can't add "ds" prefix to Signature

Question

saml:LogoutResponse - at a HTTP-POST binding i can't add "ds" prefix to Signature

ivan-ionin opened this issue 7 years ago · 0 comments

samlp/signers.js - line 40 (sig.keyInfoProvider) and 46 (sig.computeSignature):

sig.keyInfoProvider = {
getKeyInfo: function () {
return "<X509Data><X509Certificate>" + pem + "</X509Certificate></X509Data>";
}
};

sig.computeSignature(xml, {
location: {
reference: "//*[local-name(.)='Issuer']",
action: 'after'
}
});

Key info must be configured like a return "<X509Data><X509Certificate>" + pem + "</X509Certificate></X509Data>"; or return "<ds:X509Data><ds:X509Certificate>" + pem + "</ds:X509Certificate></ds:X509Data>";

But this is not possible from outside.

And sig.computeSignature method - i can't add property "prefix" (to xml-crypto package) to be added canonical prefixes "ds".