Custom asserter before SAML2 Indentity Asserter
We want to setup saml2-SSO between a Weblogic server (acting as SP) and the 3rd-party Identity Server acting as the IDP.
We already know, WebLogic Server does not support encrypted assertions in SAML.
So my question is,
In Weblogic server, is there any way to have any Asserter/provider which will be invoked before SAML2IdentityAsserter every time. This Asserter/provider will be order wise before SAML2IdentityAsserter and this Asserter/provider with the help of authentication filter access the encrypted assertion, decrypt it and set unencrypted SAML Assertion back to HTTP Request and then SAML2IdentityAsserter will carry out normal SAML2 validation.