Thank you for confirming the use of FIPS-approved encryption algorithms in the SAML library. I have a few more questions related to SAML assertion encryption and decryption:Configuration:
Can you please guide me on where and how we can configure the SAML assertion encryption algorithm within the SAML library?Decryption Process:
I noticed that the code uses the SendSSO method for sending the SAML response to the Service Provider in SP-initiated SSO. However, I didn't find explicit details on how the assertion is encrypted and decrypted. Could you provide information on how the library handles the decryption process?Decryption Capability of the Library: Full SAML Response vs. Encrypted SAML Assertion Only
: I observed that the full SAML response is encrypted and decrypted correctly, with user attributes being populated at the Service Provider's side. Could you please clarify - Is the library designed to decrypt only the entire SAML response, or can it correctly handle the decryption of an encrypted SAML assertion within a SAML response where only the SAML Assertion part is encrypted?
I appreciate your assistance in clarifying these details as they are crucial for our implementation/evaluation. Thank you in advance!