Net::SAML2 is a Perl module that implements the SAML2 protocol for Perl Applications.
This release adds support for EncryptedAssertions via the XML::Enc module.
Support for EncryptedAssertions is automatic if an EncryptedAssertion is received but the call to Net::SAML2::Protocol::Assertion must provide a key_file and a cacert to decrypt the EncryptedAssertion and verify the Signature on the decrypted Assertion (if it is signed).
No changes are required for existing applications that do not use EncryptedAssertions.
If you have never implemented SAML2 in a Perl web application, there is an extensive tutorial that discusses how to implement Net::SAML2 using Foswiki's SamlLoginContrib as an example.
In addition, the git repo includes a testapp that makes it easy to test against multiple IdPs by simply adding a directory, named for the IdP, containing valid metadata.xml and cacert.pem files.
Top comments (0)