Subject: SAML Response Validator
Date: 2016-05-18 23:14:53
From: Gurinder Singh
Source: saml-response-validator

I am using Atp.Saml2 package for validating SAML response by using Response.validate() method. I noticed that even if SAML response is unsigned but the assertion is signed, it validates it correctly. Just wanted to confirm the behavior.  I was thinking that Response.validate() will only validate response and for assertion validation, I have to specifically do validation on the assertion. 

Please let me know. Thanks

---------------------------------------------------------------------- Note: This question has been asked on the Q&A forum of Thang Dang's fraudulent ComponentPro brand If you purchased anything from ComponentPro, you have been scammed. Contact the payment processor who sold you the license and ask for your money back. Back to ComponentPro Q&A Forum Index