Skip to content

Set key to be only for signing by adding signing_only in the SP #220

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 19, 2025
Merged

Set key to be only for signing by adding signing_only in the SP #220

merged 1 commit into from
May 19, 2025

Conversation

waterkip
Copy link
Collaborator

In 3c87e51 we defined the signing key to be for signing and encryption. This new flag allows consumers to keep old behaviour where the key was/is only used for signing and not encrypting.

@waterkip waterkip force-pushed the GH-xx-only_a_signing_cert branch from f4853b0 to 0935431 Compare May 9, 2024 12:32
@timlegge
Copy link
Contributor

timlegge commented May 9, 2024

looks fine but I wonder if we just just revert 3c87e51 and add a flag to not show the use if only a signing key is provided? That puts it back to the original but allows you to specify something else

@waterkip
Copy link
Collaborator Author

Also an option, add primary_key_usage => 'both|sign|encryption' to the constructor. Although for encryption we have a special attribute for the encryption key.

@waterkip waterkip force-pushed the GH-xx-only_a_signing_cert branch 2 times, most recently from 26a305b to 0c302cf Compare January 4, 2025 02:57
timlegge
timlegge approved these changes Jan 4, 2025
View reviewed changes
Copy link
Contributor

@timlegge timlegge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@timlegge
Copy link
Contributor

timlegge commented Jan 4, 2025

@waterkip were you finished with this? If so merge or let me know and I will.

@waterkip waterkip force-pushed the GH-xx-only_a_signing_cert branch from 0c302cf to 7d73f2b Compare May 15, 2025 14:56
@waterkip
Set key to be only for signing by adding signing_only in the SP
44110c4 
In 3c87e51 we defined the signing key to be for signing and encryption.
This new flag allows consumers to keep old behaviour where the key
was/is only used for signing and not encrypting.

Signed-off-by: Wesley Schwengle <waterkip@cpan.org>
@waterkip waterkip force-pushed the GH-xx-only_a_signing_cert branch from 7d73f2b to 44110c4 Compare May 15, 2025 15:00
@waterkip waterkip merged commit d2bb5c0 into perl-net-saml2:master May 19, 2025
4 checks passed
@waterkip waterkip deleted the GH-xx-only_a_signing_cert branch May 26, 2025 23:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@timlegge timlegge timlegge approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@waterkip @timlegge