[Satosa-dev] pysaml2 failing signature validation

Leif Johansson leifj at sunet.se
Wed Sep 20 09:21:59 CEST 2017


On 2017-09-19 23:25, Rainer Hoerbe wrote:
> I find Satosa having problems with the metadata signature validation since yesterday. Signatures created by both pyff and shib/xmlsectool cause satosa_saml_metadata.py fail with 
> saml2.sigver.XmlsecError: data and digest do not match. I am not aware of any configuration changes that are related to the issue. 
> 

Did you check that signature via some other tool?

> Did someone reload and check metadata recently, with or without system update or a new Docker image?
> 

What metadata? Which docker image are you using. I don't think we
automatically push any docker images to the public docker hub...

> This leads me to another question. Is Satosa capable of reloading metadata without restart?

I use mdq servers for that (in production).

	Cheers Leif


More information about the Satosa-dev mailing list