Today, we performed interoperability testing of the new SAML 2.0 PHP IdP that I am working on. We had some issues with XMLsig. I forgot to add a Transform element for the C14 transform. An operation that I did implicit in the SP, but that some products needs excplicit in the ds:SignedInfo/Transforms. No or genereal debug logging made it a bit difficult to figure this out, but now the problem is solved.

The IdP is now tested to work against:

• Shibboleth 2.0 SP
• Sun Federated Access Manager (earlier OpenFM)
• Lasso
• mod_mellon (apache module using Lasso, more info and source will be posted soon on this product)
• Open SSO PHP Extension