IDP Encryption

  • Iggy
    # 2 weeks, 2 days ago

    Hi, I set up MiniOrange as a test IDP but when I test it I see it is only using SHA1, can it be set to SHA256 instead?

    Actual token signature algorithm: http://www.w3.org/2000/09/xmldsig#rsa-sha1
    Expected token signature algorithm: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256

    Thanks!

    Ankit Ahuja
    # 2 weeks, 1 day ago

    Hi there,

    Thanks for reaching out. The IDP uses the SHA1 algorithm for signing the SAML Response by default. We’ll add a configurable option to the app settings where you can change the signing algorithm to SHA256. Can you please send us an email with the feature request at info@miniorange.com? This way we can keep you posted on the progress of this feature.

    Thanks,
    Ankit Ahuja
    Software Engineer
    miniOrange Security Software Pvt. Ltd.

Viewing 2 posts - 1 through 2 (of 2 total)

Reply