Hi, we are using High level SAML API provided by component space for our application and our application is a Service Provider...
When isassertion expiration checked? Is it When RecieveSSO is processing the response from IdP, the assertion expiry check done? If it checks, does it depend on SamlSession to verify the assertion timeout. I am asking this to make sure we don't expire or delete saml session.
Also when we extend IIDCache and store the assertionIDs to prevent replay attacks, what is the use of "expirationDateTime" parameter in ADD method of IIDCache?Thanks, Karun
|