Bug 48044 - Make the certificate used for signing the saml request from the umc SP configurable
Make the certificate used for signing the saml request from the umc SP config...
Status: NEW
Product: UCS
Classification: Unclassified
Component: SAML
UCS 4.4
Other Linux
: P5 normal (vote)
: ---
Assigned To: UCS maintainers
UCS maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-10-23 11:38 CEST by Jürn Brodersen
Modified: 2020-07-06 16:33 CEST (History)
2 users (show)

See Also:
What kind of report is it?: Feature Request
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional): SAML, Security
Max CVSS v3 score:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Jürn Brodersen univentionstaff 2018-10-23 11:38:40 CEST
Make the certificate used for signing the saml request from the umc SP configurable

Currently the certificate under /etc/univention/ssl/$FQDN/private.key is used. Which I think is a good default, but might not always be desired.

See:
univention-management-console/usr/share/univention-management-console/saml/sp.py
Comment 1 Florian Best univentionstaff 2019-03-30 08:45:28 CET
I don't see a reason/use-case to make it configurable.