Thanks guys, You got me thinking in the write direction. I see now what I need is a signed SAML assertion. This can be done using Opensaml. I can created the saml assertion and then sign it just using opensaml. But now my problem is that if I insert the saml insertion into the security header But now my problem is that if I insert the saml insertion into the security header the message is always off by a few spaces. Normaly I would not care but the minor changes does invalidate the singature.
dstrower wrote: > > I am trying to sign a message with a SAML token. I am able to do this but > the format looks like this: > Security > signature > saml > > My server requires that the signature be inside the SAML assertion. > Can I control where the signature is placed? > -- View this message in context: http://www.nabble.com/Can-the-location-of-the-signature-be-controlled--tf4451302.html#a12757409 Sent from the WSS4J mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
