public static BaseSAML2BindingBuilder createSaml2Binding(SamlDeployment deployment) { BaseSAML2BindingBuilder binding = new BaseSAML2BindingBuilder(); if (deployment.getIDP().getSingleSignOnService().signRequest()) { binding.signatureAlgorithm(deployment.getSignatureAlgorithm()); KeyPair keypair = deployment.getSigningKeyPair(); if (keypair == null) { throw new RuntimeException("Signing keys not configured"); } if (deployment.getSignatureCanonicalizationMethod() != null) { binding.canonicalizationMethod(deployment.getSignatureCanonicalizationMethod()); } binding.signWith(null, keypair); // TODO: As part of KEYCLOAK-3810, add KeyID to the SAML document // <related DocumentBuilder>.addExtension(new KeycloakKeySamlExtensionGenerator(<key ID>)); binding.signDocument(); } return binding; }