JDK-6713838 : JSR 105 DOMCryptoContext.setIdAttributeNS not working when validating signatures
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed. Resolved: Release in which this issue/RFE has been resolved. Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
Some users have been hitting this bug with JDK 6. It has already been fixed in the
Apache XMLSec implementation (see https://issues.apache.org/bugzilla/show_bug.cgi?id=39273)
but needs to be patched in JDK 6.
This bug can cause applications that validate XML Signatures to fail.
It has been reported when validating signed SAML assertions, which is
a web services security feature supported by our products such as
This is a pretty serious bug without an obvious workaround. It is an easy, low risk fix and it has already been fixed in the Apache XMLSec code.
Yes, this is a bug that should be fixed.