是否有人知道创建已签名SAML Authnentication请求的正确步骤顺序?WSO2 IS 4.6.0:已签名SAML身份验证请求的组成
我试着用下面的步骤,但不幸的是,WSO2IS抛出一个异常
- 生成SAMLRequest值
- 编码为Base64的SAMLRequest值
- URL编码,SAMLRequest值
- 对SigAlg值进行网址编码:http://www.w3.org/2000/09/xmldsig#rsa-sha1
- 将算法签名(
SHA1withRSA
)与
SAMLRequest =值& SigAlg =值
- URL编码所生成的签名
预先感谢
例外留言:
错误{} org.opensaml.xml.security.SigningUtil - 在 签名验证 java.security.SignatureException错误:签名长度不正确:有252,但在sun.security.rsa.RSASignature期待256 .engineVerify(Unknown Source) at java.security.Signature $ Delegate.engineVerify(Unknown Source) at java.security.Signature.verify(Unknown Source) at org.opensaml.xml.security.SigningUtil.verify(SigningUtil。 java:247) at org.opensaml.xml.security.SigningUtil.verify(SigningUtil.java:215) at org.opensaml.xml.security.SigningUtil.verifyWithURI(SigningUtil.java:184) 在org.opensaml.xml.signature.impl.ExplicitKeySignatureTrustEngine.validate(ExplicitKeySignatureTrustEngine.java:156) 在org.wso2.carbon.identity.sso.saml.validators.SAML2HTTPRedirectDeflateSignatureValidator.validateSignature(SAML2HTTPRedirectDeflateSignatureValidator.java:78) 在org.wso2.carbon.identity.sso.saml.util.SAMLSSOUtil.validateDeflateSignature(SAMLSSOUtil.java:625) 在org.wso2.carbon.identity.sso.saml.util.SAMLSSOUtil.validateAuthnRequestSignature(SAMLSSOUtil.java:578) 在org.wso2.carbon.identity.sso.saml.processors.SPInitSSOAuthnRequestProcessor.process(SPInitSSOAuthnRequestProcessor.java:108) 在org.wso2.carbon.identity.sso.saml.SAMLSSOService.authenticate(SAMLSSOService.java:192) at org.wso2.carbon.identity.sso.saml.servlet.SAMLSSOProviderServlet.handle RequestFromLoginPage(SAMLSSOProviderServlet.java:415) at org.wso2.carbon.identity.sso.saml.servlet.SAMLSSOProviderServlet.handleRequest(SAMLSSOProviderServlet.java:127) at org.wso2.carbon.identity.sso.saml.servlet。 SAMLSSOProviderServlet.doPost(SAMLSSOProviderServlet.java:81) at javax.servlet.http.HttpServlet.service(HttpServlet.java:755) at javax.servlet.http.HttpServlet.service(HttpServlet。Java的:848)