Closed davideluque closed 1 year ago
From what I understand, Ruby-SAML does not support plain RSA-OAEP (http://www.w3.org/2009/xmlenc11#rsa-oaep)
I forced in my SP metadata the EncryptionMethod as http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p because it was using http://www.w3.org/2009/xmlenc11#rsa-oaep as default.
@davideluque I can’t seem to find this in the options, or source code. Did you add it manually in metadata, or are you not using the metadata generating from this gem?
Hi everyone,
I have an EncryptedAssertion that I need to decrypt. I generated the Private Key, a CSR, and a self-signed certificate. I added the certificate to the metadata on the IdP side and also on the settings of OmniAuth (which are passed to ruby-saml).
I believe that ruby-saml is using the RSA Private key as the symmetric key and that is why I am getting this error.
Here is an example of the EncryptedAssertion (I changed parts of the encrypted data to random characters)