IDP Encryption

  • Iggy
    # 6 months, 2 weeks ago

    Hi, I set up MiniOrange as a test IDP but when I test it I see it is only using SHA1, can it be set to SHA256 instead?

    Actual token signature algorithm:
    Expected token signature algorithm:


    Ankit Ahuja
    # 6 months, 2 weeks ago

    Hi there,

    Thanks for reaching out. The IDP uses the SHA1 algorithm for signing the SAML Response by default. We’ll add a configurable option to the app settings where you can change the signing algorithm to SHA256. Can you please send us an email with the feature request at This way we can keep you posted on the progress of this feature.

    Ankit Ahuja
    Software Engineer
    miniOrange Security Software Pvt. Ltd.

Viewing 2 posts - 1 through 2 (of 2 total)