Do NOT collect signature cert from the authn request and use for encryption.

author: Hans Hörberg <hans.horberg@umu.se> 2015-05-25 15:32:31 +0200
committer: Hans Hörberg <hans.horberg@umu.se> 2015-05-25 15:32:31 +0200
commit: b6c8938e7db8efa0002e6ed7bb64a82af8b6c63a (patch)
tree: 10f3fb08c90b635eabf1650974373b2e011fa69e /src/saml2/sigver.py
parent: e2b04612470264bda302d232a801db02dfed9ff6 (diff)
download: pysaml2-b6c8938e7db8efa0002e6ed7bb64a82af8b6c63a.tar.gz
1 files changed, 8 insertions, 8 deletions
diff --git a/src/saml2/sigver.py b/src/saml2/sigver.py
index ca928686..89531db2 100644
--- a/src/saml2/sigver.py
+++ b/src/saml2/sigver.py
@@ -1070,17 +1070,17 @@ def encrypt_cert_from_item(item):
                                                [pefim, ds])
         if len(_elem) == 1:
             _encrypt_cert = _elem[0].x509_data[0].x509_certificate.text
-        else:
-            certs = cert_from_instance(item)
-            if len(certs) > 0:
-                _encrypt_cert = certs[0]
+        #else:
+        #    certs = cert_from_instance(item)
+        #    if len(certs) > 0:
+        #        _encrypt_cert = certs[0]
     except Exception:
         pass
 
-    if _encrypt_cert is None:
-        certs = cert_from_instance(item)
-        if len(certs) > 0:
-            _encrypt_cert = certs[0]
+    #if _encrypt_cert is None:
+    #    certs = cert_from_instance(item)
+    #    if len(certs) > 0:
+    #        _encrypt_cert = certs[0]
 
     if _encrypt_cert is not None:
         if _encrypt_cert.find("-----BEGIN CERTIFICATE-----\n") == -1:
author	Hans Hörberg <hans.horberg@umu.se>	2015-05-25 15:32:31 +0200
committer	Hans Hörberg <hans.horberg@umu.se>	2015-05-25 15:32:31 +0200
commit	b6c8938e7db8efa0002e6ed7bb64a82af8b6c63a (patch)
tree	10f3fb08c90b635eabf1650974373b2e011fa69e /src/saml2/sigver.py
parent	e2b04612470264bda302d232a801db02dfed9ff6 (diff)
download	pysaml2-b6c8938e7db8efa0002e6ed7bb64a82af8b6c63a.tar.gz