SAML response contains RSAkeyvalue, was it always the case?

sherif · December 21, 2022, 3:37pm

Hello, is that was always the case that SAML response will contain RSAkeyvalue when signing the document or the assertion? seems like some SP don’t like that " I know they should fix their code" I was just wondering if this was always the case, an example is below " some parts are omitted "

    <dsig:SignatureValue>XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</dsig:SignatureValue>
    <dsig:KeyInfo>
        <dsig:X509Data>
            <dsig:X509Certificate>XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</dsig:X509Certificate>
        </dsig:X509Data>
        <dsig:KeyValue>
            <dsig:RSAKeyValue>
                <dsig:Modulus>XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX</dsig:Modulus>
                <dsig:Exponent>AQAB</dsig:Exponent>
            </dsig:RSAKeyValue>
        </dsig:KeyValue>
    </dsig:KeyInfo>
</dsig:Signature>

Topic		Replies	Views
Enhancing SAML response with some xml tags? Getting advice	2	2458	January 24, 2020
SAML und Keycloak RSA key rotation Configuring the server saml	0	606	October 7, 2022
Failed to verify saml assertion by hash Getting advice saml	0	252	February 19, 2024
Keycloak SAML support for rsa-sha1 saml	1	116	December 24, 2024
Enable Signed/Encrypted Assertion with SAML IDP Getting advice authentication , identity-brokering , saml	1	2656	November 28, 2023

SAML response contains RSAkeyvalue, was it always the case?

Related topics