[Idpy-discuss] encrypting responses

The question is really about if the satosa saml frontend can be configured to encrypt the authn-response assertions, right? Atm, I don't see any way to do this from the saml frontend, but here's a patch for you: https://github.com/c00kiemon5ter/SATOSA/commit/8523309cc0ddad84dac68327ae66… The entry point to pysaml2 from saml frontend is server.py:create_authn_response() which accepts the argument 'encrypt_assertion'. pysaml2 already includes the configuration option 'encrypt_assertion' but it does not seem to be used anywhere (I have talked about such inconsistencies before.) You should now be able to use 'encrypt_assertion' the same way you would use 'sign_assertion' or 'sign_response'. Try it out and let me know! Cheers, -- Ivan c00kiemon5ter Kanakarakis >:3