There are mainly three bindings: SOAP, Redirect or POST (whether you use ID-FFv1.2 or SAMLv2).
lasso_logout_process_request_msg
.
@file_get_contents('php://input')
,DataInputStream(request.getInputStream()).readUTF()
,$_SERVER["QUERY_STRING"]
,request.getQueryString()
if you use the standard Java servlet classes (HttpServletRequest
),SAMLRequest
and SAMLResponse
. For ID-FFv1.2 it means the field named LAREQ
or LARES
.
$_POST["SAMLRequest"]
, and replace the name of the field by the appropriate name,request.getParameter("SAMLRequest")
LASSO_PROFILE_ERROR_CANNOT_VERIFY_SIGNATURE
(or emit exception ProfileCannotVerifySignatureError
or ProfileCannotVerifySignatureException
) ?¶It means the message you received was not signed. It usually means that your peer choose to not sign the message. If this is not a problem for your, just add this call before the processing,
lasso_profile_set_signature_verify_hint(LASSO_PROFILE_SIGNATURE_VERIFY_HINT_IGNORE);
or with python:
profile.setSignatureVerifyHint(lasso.PROFILE_SIGNATURE_VERIFY_HINT_IGNORE)
or with java:
profile.setSignatureVerifyHint(LassoConstant.PROFILE_SIGNATURE_VERIFY_HINT_IGNORE);
or with PHP5