mx-moth / flask-saml2

Flask library for building SAML Service Providers and Identity Providers
MIT License
70 stars 61 forks source link

Signature method RSA_SHA1 forbidden by configuration #40

Open TimSC opened 1 year ago

TimSC commented 1 year ago

I'm trying to run the example. I'm using python Python 3.10.6 and pyOpenSSL-23.1.1.

127.0.0.1 - - [13/May/2023 00:19:30] "POST /saml/acs/ HTTP/1.1" 500 - Traceback (most recent call last): File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 2213, in call return self.wsgi_app(environ, start_response) File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 2193, in wsgi_app response = self.handle_exception(e) File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 2190, in wsgi_app response = self.full_dispatch_request() File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 1486, in full_dispatch_request rv = self.handle_user_exception(e) File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 1484, in full_dispatch_request rv = self.dispatch_request() File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/app.py", line 1469, in dispatch_request return self.ensure_sync(self.view_functions[rule.endpoint])(view_args) File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/views.py", line 109, in view return current_app.ensure_sync(self.dispatch_request)(kwargs) File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/flask/views.py", line 190, in dispatch_request return current_app.ensure_sync(meth)(**kwargs) File "/home/tim/dev/flask-saml2/flask_saml2/sp/views.py", line 86, in post response = handler.get_response_parser(saml_request) File "/home/tim/dev/flask-saml2/flask_saml2/sp/idphandler.py", line 220, in get_response_parser return ResponseParser( File "/home/tim/dev/flask-saml2/flask_saml2/xml_parser.py", line 44, in init self.xml_tree = self.parse_signed(self.xml_tree, self.certificate) File "/home/tim/dev/flask-saml2/flask_saml2/xml_parser.py", line 73, in parse_signed return XMLVerifier().verify(xml_tree, x509_cert=certificate).signed_xml File "/home/tim/dev/flask-saml2/venv/lib/python3.10/site-packages/signxml/verifier.py", line 350, in verify raise InvalidInput(f"Signature method {signature_alg.name} forbidden by configuration") signxml.exceptions.InvalidInput: Signature method RSA_SHA1 forbidden by configuration