@Override protected boolean mustSignRequest(final SPSSODescriptor spDescriptor, final IDPSSODescriptor idpssoDescriptor) { boolean signOutboundContext = false; if (this.isRequestSigned) { logger.debug("Requests are expected to be always signed before submission"); signOutboundContext = true; } else if (spDescriptor.isAuthnRequestsSigned()) { logger.debug("The service provider metadata indicates that authn requests are signed"); signOutboundContext = true; } else if (idpssoDescriptor.getWantAuthnRequestsSigned()) { logger.debug("The identity provider metadata indicates that authn requests may be signed"); signOutboundContext = true; } return signOutboundContext; }
provider.setSingleLogoutService(getEndpoints(desc.getSingleLogoutServices())); provider.setManageNameIDService(getEndpoints(desc.getManageNameIDServices())); provider.setWantAuthnRequestsSigned(desc.getWantAuthnRequestsSigned()); provider.setSingleSignOnService(getEndpoints(desc.getSingleSignOnServices())); provider.setKeys(getProviderKeys(descriptor));