Configurable Hashing Method SAML Meta Data XML

Idea ID 1682296

Configurable Hashing Method SAML Meta Data XML

Hi,

We want to implement SAML in our OO environment. During a POC we encountered a problem related to the hashing of OO's meta data XML. The default hashing method is SHA1. Because SHA1 isn't allowed by company policy we want to change the hashing method to SHA256.

One way to achieve this is to install OO as "FIPS140-2" compliant. A big disadvantage of FIPS140-2 compliancy is that the one and only fallback scenario is a whole new clean OO installation. Besides that we're currently encountering some issues during the FIPS compliant POC installation. After installing OO as FIPS compliant (using the MF documentation) the hashing of the meta data XML is still SHA1.

In the URL below I found a much more easier possible solution but this solution requires some modification in a JAR file. We obviously cant modify this JAR file ourselves.

https://tinyurl.com/y7rsw58m

We would like to be able to configure the hashing mechanism (SHA1 or SHA256) of the meta data XML ourselves. For example using a configuration file which we can modify. Can you help us with that?

Kind regards,
Thijs de With

Tags (1)
1 Comment
AndreiTruta Outstanding Contributor.
Outstanding Contributor.
Status changed to: Waiting for Votes
 
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.