Allow configuring MellonSignatureMethod as of cosmic
Bug #1834573 reported by
Dmitrii Shcherbakov
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Keystone SAML Mellon Charm |
Triaged
|
Wishlist
|
Unassigned |
Bug Description
Some IdPs require specific signature methods to be set.
Mellon versions up to 0.13.1 (bionic) did not expose MellonSignature
As of 0.14.0 (Cosmic) MellonSignature
https:/
We should enable this option in case an IdP requires something else (e.g. sha384, sha512).
With ADFS as an IdP its operator has to explicitly choose which signature method to use and in contemporary versions of ADFS it is set to sha256 which leads to IdP-side errors and mellon <=0.13.1
Changed in charm-keystone-saml-mellon: | |
status: | New → Triaged |
importance: | Undecided → Wishlist |
To post a comment you must log in.