Switch default SAML signature alg to SHA256 (#2341)
This commit is contained in:
parent
856f798e4d
commit
f74787f81a
|
@ -310,7 +310,7 @@ sub defaultValues {
|
||||||
'samlOrganizationURL' => 'http://www.example.com',
|
'samlOrganizationURL' => 'http://www.example.com',
|
||||||
'samlOverrideIDPEntityID' => '',
|
'samlOverrideIDPEntityID' => '',
|
||||||
'samlRelayStateTimeout' => 600,
|
'samlRelayStateTimeout' => 600,
|
||||||
'samlServiceSignatureMethod' => 'RSA_SHA1',
|
'samlServiceSignatureMethod' => 'RSA_SHA256',
|
||||||
'samlSPSSODescriptorArtifactResolutionServiceArtifact' =>
|
'samlSPSSODescriptorArtifactResolutionServiceArtifact' =>
|
||||||
'1;0;urn:oasis:names:tc:SAML:2.0:bindings:SOAP;#PORTAL#/saml/artifact',
|
'1;0;urn:oasis:names:tc:SAML:2.0:bindings:SOAP;#PORTAL#/saml/artifact',
|
||||||
'samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact' =>
|
'samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact' =>
|
||||||
|
|
|
@ -3427,7 +3427,7 @@ qr/(?:(?:https?):\/\/(?:(?:(?:(?:(?:(?:[a-zA-Z0-9][-a-zA-Z0-9]*)?[a-zA-Z0-9])[.]
|
||||||
'type' => 'RSAPublicKeyOrCertificate'
|
'type' => 'RSAPublicKeyOrCertificate'
|
||||||
},
|
},
|
||||||
'samlServiceSignatureMethod' => {
|
'samlServiceSignatureMethod' => {
|
||||||
'default' => 'RSA_SHA1',
|
'default' => 'RSA_SHA256',
|
||||||
'select' => [ {
|
'select' => [ {
|
||||||
'k' => 'RSA_SHA1',
|
'k' => 'RSA_SHA1',
|
||||||
'v' => 'RSA SHA1'
|
'v' => 'RSA SHA1'
|
||||||
|
|
|
@ -2498,7 +2498,7 @@ sub attributes {
|
||||||
{ k => 'RSA_SHA384', v => 'RSA SHA384' },
|
{ k => 'RSA_SHA384', v => 'RSA SHA384' },
|
||||||
{ k => 'RSA_SHA512', v => 'RSA SHA512' },
|
{ k => 'RSA_SHA512', v => 'RSA SHA512' },
|
||||||
],
|
],
|
||||||
default => 'RSA_SHA1',
|
default => 'RSA_SHA256',
|
||||||
},
|
},
|
||||||
samlServiceUseCertificateInResponse => {
|
samlServiceUseCertificateInResponse => {
|
||||||
type => 'bool',
|
type => 'bool',
|
||||||
|
|
File diff suppressed because one or more lines are too long
Loading…
Reference in New Issue
Block a user