/** * Validate the decoded SAML2 response message. * * Performs basic message verification: * <dl> * <dd>{@link #validateSignature(SAMLMessageContext)} * </dd> * <dt>Validate signature</dt> * <dd>Mandatory signing verification</dd> * <dt>Verify if request MUST be signed</dt> * <dl> * * @param context The message context containing decoded message * @throws SAML2SecurityException If message should be rejected. * @throws OAException If an internal error occurs */ public void validateResponse(SAMLMessageContext<SignableSAMLObject, SignableSAMLObject, SAMLObject> context) throws Exception { context.setPeerEntityRole(IDPSSODescriptor.DEFAULT_ELEMENT_NAME); validateMessage(context); }