How to validate a SAML signature value

Question

I have a customer who is sending a Security key. The encryption they are using is triple DES. Every Assertion they send has a signature value which needs to be validated to give

Answer 1

If you want to validate the signature on the SAML Assertion or any of the Signable XML Objects, the OpenSAML WIKI has more information:

https://wiki.shibboleth.net/confluence/plugins/viewsource/viewpagesrc.action?pageId=3277047

You can look for 'Signature Verification Examples'.

This blog post also has an example as well:

http://mylifewithjava.blogspot.com/2012/11/verifying-signatures-with-opensaml.html

To obtain a 'credential' for validation, see here: http://mylifewithjava.blogspot.com/2011/03/getting-credentials-in-opensaml.html

For info on how to unmarshal XML into an Open SAML object, see here: https://wiki.shibboleth.net/confluence/display/OpenSAML/OSTwoUsrManJavaCreateFromXML