Security
litesaml/saml supports message signing, signature verification, assertion encryption, and assertion decryption. All security features are configured through descriptor classes (Sp, Idp) and are applied automatically by the wrappers.
- Generate a key pair — create a certificate and private key with OpenSSL
- Sign message — automatically sign outgoing messages
- Verify signature — validate signatures on incoming messages
- Encrypt assertion — send encrypted attributes from the IdP
- Decrypt assertion — receive and decrypt assertions on the SP