Hello,
I had integrated the 1login with our custom IDP using SAML 2.0. It is working fine when i read the partner service provider configuration from saml.config. The same is not working when I have the same configuration in the database table (SQL) and getting the error “SAML assertion is not valid.”
One thing i observed from the saml response is the difference in the algorithm
1. Signature method (http://www.w3.org/2000/09/xmldsig#rsa-sha1)
2. Digest method (http://www.w3.org/2001/04/xmlenc#sha256)
I have attached the SAML response for both
1. SAML Response - works fine with saml.config
2. SAML Response - not works with database
Thanks,
Naveen
It’s most likely the SHA-1 vs SHA-256 signature difference that you observed.
Are you setting the DigestMethod and SignatureMethod configuration properties?
They default to SHA-256 unless set explicitly.
If there’s still an issue, please enable SAML trace and send the generated log file as an email attachment to support@componentspace.com mentioning your forum post.
https://www.componentspace.com/Forums/17/Enabing-SAML-Trace