Skip to content

Using AES instead of DES-192 for Encryption #821

New issue
New issue
Open
#924
Open
Using AES instead of DES-192 for Encryption#821
#924
Labels
next-releaseshould become part of the next release
@JHoelting

Description

@JHoelting
JHoelting
opened on Aug 23, 2021

When encrypting the SAML message, the configuration passed top xmlsec seem to use DES-192
This is the command thats ran

/usr/local/bin/xmlsec1 --encrypt --pubkey-cert-pem /var/folders/pg/cghxqls97rdb6dltkcy3v_2h0000gn/T/tmpwihgq3id --session-key des-192 --xml-data /var/folders/pg/cghxqls97rdb6dltkcy3v_2h0000gn/T/tmpvs7obw71 --node-xpath /*[local-name()='Response']/*[local-name()='EncryptedAssertion']/*[local-name()='Assertion'] --output /var/folders/pg/cghxqls97rdb6dltkcy3v_2h0000gn/T/tmp8epggsyb.xml /var/folders/pg/cghxqls97rdb6dltkcy3v_2h0000gn/T/tmp6oe7y7_2

Is it possible to use AES instead of DES-192, it seems like DES is hardcoded into the code and I cant find where to change it from the requirements.

Code Version

pysaml2==7.0.1

Expected Behavior

Have some way of configuring which algorithm is used for encryption

Metadata

Metadata

Assignees

No one assigned

    Labels

    next-releaseshould become part of the next release

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions