PR for suupport validate Encyrpted saml Assertion to get claims

[Indrani123]

Hi,

I am using this saml20 to consume signed assertion from my IDP, which is so far good,
but found this right know this saml20 is not able to consume encrypted raw assertion .
if encrypted assertion send as input it will give response invalid assertion error

If this module able to consume encrypted saml assertion

this is my sample encrypted assertion

<?xml version=\"1.0\" encoding=\"UTF-8\" standalone=\"no\"?><saml2:EncryptedAssertion   xmlns:saml2=\"urn:oasis:names:tc:SAML:2.0:assertion\"><xenc:EncryptedData xmlns:xenc=\"http://www.w3.org/2001/04/xmlenc#\" Id=\"_2d9f82250ca57753a684a3819eec1c0f\" Type=\"http://www.w3.org/2001/04/xmlenc#Element\"><xenc:EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#aes128-cbc\"/><ds:KeyInfo xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"><xenc:EncryptedKey Id=\"_f849d284aacb6ca17e53b482406db122\"><xenc:EncryptionMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p\"><ds:DigestMethod Algorithm=\"http://www.w3.org/2000/09/xmldsig#sha1\"/></xenc:EncryptionMethod><xenc:CipherData><xenc:CipherValue>ecnyrpted assertion data .....</xenc:CipherValue></xenc:CipherData></xenc:EncryptedData></saml2:EncryptedAssertion>

We want to use this module in production , so require encryption and decryption support to validate SAML assertion.

Do you have a plan for your module to support Encrypted saml assertion validation .?

Thanks and regards
Indrani

[Indrani123]

Any update to this requirement ?

[leandrob]

Hello, I have plans for supporting encryption, but didn't have the time yet to do it, pull requests are welcome.

thanks