ws-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Colm O hEigeartaigh <cohei...@apache.org>
Subject Re: Wss4j support for SAML 2.0 EncryptedAssertion
Date Tue, 22 Apr 2014 09:32:02 GMT
Hi,

No, it's not currently supported. We only support encrypted SAML Assertions
as EncryptedData elements. Could you create a JIRA for this + attach a
sample request, and I'll look into it?

Colm.


On Mon, Apr 21, 2014 at 2:16 PM, Mark Kidd <markkidd78@yahoo.com> wrote:

> Does WSS4J (1.6.9 ) support SAML 2.0 EncryptedAssertion elements?
>
> My service is receiving an EncryptedAssertion from the STS, and when WSS4J
> is trying to parse the security token reference, it can't find the
> Assertion via its ID its
> encrypted(org.apache.ws.security.str.DerivedKeyTokenSTRParser.parseSecurityTokenReference)
>
> It falls back to the CallbackHandler looking for the secret key(which I
> clearly won't have).
>
> I was able to manually decrypt the EncryptedAssertion via the opensaml
> library( following the decryption example here: OSTwoUserManJavaXMLEncryption
> - OpenSAML 2.x - Confluence<https://wiki.shibboleth.net/confluence/display/OpenSAML/OSTwoUserManJavaXMLEncryption>
),
> but I was hoping that WSS4J should be handling this automatically for me
> and I've just incorrectly set something up.
>
> Thanks for any insight.
>
> OSTwoUserManJavaXMLEncryption - OpenSAML 2.x - Confluence<https://wiki.shibboleth.net/confluence/display/OpenSAML/OSTwoUserManJavaXMLEncryption>
> XML Encryption Encrypting a SAMLObject SAML 2 objects may be encrypted per
> the SAML 2 profile of the XML Encryption specification. Encryption consists
> of the following steps:
> View on wiki.shibboleth.net<https://wiki.shibboleth.net/confluence/display/OpenSAML/OSTwoUserManJavaXMLEncryption>
> Preview by Yahoo
>
>



-- 
Colm O hEigeartaigh

Talend Community Coder
http://coders.talend.com

Mime
View raw message