I'm trying to verify the embedded signature in a SAML 1.1 assertion. SAML assertion + signature were generated using the OpenSAML library. The verification fails on the tag InclusiveNamespaces. Is InclusiveNamespaces supported in OEG?
The OEG does support (generate and consume) the InclusiveNamespaces node in signatures. From further investigation the OEG requires the PrefixList attribute on the InclusiveNamespaces element. This is not there in the signature below, and so the error is generated. Can the signature be generated with the prefixlist ?