Testing SAML Signature Validation in Tenant Mode with WSO2 Identity Server
If you are going to test a scenario where you need to enable SAML Signature Validation in a Service Provider registered in a Tenant Mode below are the steps that you need to follow.
- Configure Travelocity sample app as mentioned in this blog.
- Now create a certificate in the travelocity web app side as shown in the below image.
keytool -export -alias wso2carbon -file wso22.com -keystore wso2carbon.jks
There will be a cert file generated as wso22.com
3. Now login to the IS as created Tenant(admin@wso2.com) and navigate to the below location
Keystores > List > Import Cert
4. Browse for the created cert wso22.com from the browse option and import.
5. Now register travelocity as the SP in Tenant Mode.
6. In SP SAML configs > Certificate Alias > select the created imported certificate as wso22.com
7. Now enable the Enable Signature Validation in Authentication Requests and Logout Requests option from the SP SAML configs as shown in the above image.
8. Access the travelocity sample app with below link
