Re: [Dev] [IS] - Clarification on Duplicate entries in SAML Authentication Response

Hi Nadeesha The duplicate entry meant by you is under the saml assertion. Saml response object contains a saml assertion. And when you sign both response and assertion this entry includes into both objects. For more details you can refer to saml spec. [1] [1]

[Dev] [IS] - Clarification on Duplicate entries in SAML Authentication Response

Hi IS team, I am testing SAML SSO with travelocity app and when I signed in to the app I noticed in the SAML authentication response getting duplicate entries for saml2:Issuer, ds:Signature, ds:X509Certificate etc with the same response data. Is there a special reason these are duplicated? Just

Re: [Dev] [IS] - Clarification on Duplicate entries in SAML Authentication Response

Hi Pushpalanka, Thanks! This Spec has it all very detailed. Got the concern clarified and clear now! On Fri, Oct 2, 2015 at 10:48 AM, Pushpalanka Jayawardhana wrote: > Hi Nadeesha, > > The specification[1] mentions element as optional. Please refer > section "3.2.2 Complex

Re: [Dev] [IS] - Clarification on Duplicate entries in SAML Authentication Response

Hi Danushka, Thanks for the response! I tested this without enabling the response signing and assertion signing, but still the saml2:Issuer is duplicated in both response and assertion. As per my reading on the saml spec in [1] the Response doesn't contain an issuer, only the assertion contains

Re: [Dev] [IS] - Clarification on Duplicate entries in SAML Authentication Response

Hi Nadeesha, The specification[1] mentions element as optional. Please refer section "3.2.2 Complex Type StatusResponseType" in the specification. Also there is sample SAML Response in the section "5.4.6 Example" of the spec for quick reference. This issuer element defines who issued the SAML