Layer7 API Gateway: Change the namepace for the Build SAML Response Assertion

book

Article ID: 192700

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

When using the Build SAML Response Assertion the response for SAML 2.0 includes the namespace samlp2.

Is this configurable?

For example:

<samlp2:Response ID="ResponseId_9cc95119e2754beb49c0d35910f43132" InResponseTo="SSOLOGIN_4fee3b046395c4e751011e97f8900b5273d56685" IssueInstant="2020-06-10T19:20:37.611Z" Version="2.0" xmlns:samlp2="urn:oasis:names:tc:SAML:2.0:protocol"><samlp2:Status><samlp2:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/><samlp2:StatusMessage>Success Message</samlp2:StatusMessage></samlp2:Status><saml2:Assertion ID="SamlAssertion-6b810a30d7f9f09963518739728f6695" IssueInstant="2020-06-10T13:46:59.189Z" Version="2.0" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">

Environment

Release : 9.3

Component : API GATEWAY

Resolution

The namespace cannot be configured. The namespaces provided will always be

samlp2 For SAML 2.0

samlp For SAML 1.0