tngan
tngan
@frax93 Please send me a message on https://spectrum.chat/samlify, I will help you to get through the debugging process. After this issue is fixed, we will update the ticket without exposing...
https://github.com/authenio/react-samlify/tree/develop I have tried to setup local OpenAM, that's the simplest example with assertion signature. Setup flow will be added into the documentation later on.
@frax93 Any update for this issue?
@frax93 Can you also send me the base64 encoded string of the SAML response?
@dsimic-coco @rkkatariya Which IdP are you using ? I have confirmed a test case that if the response contains CRLF character, it will cause the failed signature verification.
@d3simic Yes, it's a known issue that the extra CRLF will cause the failed signature verification with using samlify, from the case that I have worked with someone in the...
@rkkatariya Would you mind to share what kind of issue? It could be a hint for debugging that someone may encounter later on. :)
@coreypmurphy Make sure the response is signed. SAML response is restricted to be signed (either message signature or assertion signature).
@coreypmurphy Is the response signed then encrypted or encrypted then signed?
Check the option `messageSigningOrder`, it is `sign-then-encrypt` by default, change to `encrypt-then-sign` if it is the case. https://samlify.js.org/#/idp-configuration?id=idp-configuration