Force Sign Assertions

[pascalschulz]

Hi,

is there a way how I can force the IDP to sign all my assertions. I am running into problems testing against an SP, which needs my assertions to be signed.

Best, Pascal

[mcguinness]

You should be able to add signedAssertion: true to the idpOptions params object in app.js and expose via a new CLI arg similar to signResponse: argv.signResponse

[pascalschulz]

May I ask you what the reason is that both "signAssertion" and "signResponse" are not part of the idpOptions by default?

At least by looking at "saml-idp --help", I don't seem to find them.

However, I will try your suggested way to integrate it.