public key to verify SAML response

krakenjs / passport-saml-encrypted

A strategy for Passport authentication that supports encrypted SAML responses

MIT License

14 stars 26 forks source link

public key to verify SAML response #12

Open cherchyk opened 8 years ago

cherchyk commented 8 years ago

I'm receiving signed SAML which I have to validate with the public key.

is it something that passport-saml-encrypted can help me with or I have to use passport-saml?

lmarkus commented 8 years ago

It should help you

On Feb 9, 2016, at 3:19 PM, Bohdan Cherchyk notifications@github.com<mailto:notifications@github.com> wrote:

I'm receiving signed SAML which I have to validate with the public key.

is it something that passport-saml-encrypted can help me with or I have to use passport-saml?

Reply to this email directly or view it on GitHubhttps://github.com/lmarkus/passport-saml-encrypted/issues/12.

cherchyk commented 8 years ago

sorry not clear passport-saml-encrypted or passport-saml ?

joelwass commented 8 years ago

Not sure if this is resolved or not, but in response to @cherchyk , if your SAML coming back is Signed, then you should be able to validate it with the public key in both passport-saml and with passport-saml encrypted. make sure that the public key you're using is from the SAML response provider.