With encryption The ID of each Signature element must be unique

moonfriend · c00kiemon5ter · commit b925bae1adaf · 2023-02-14T20:20:38.000+02:00
If assertion is gonna be encrypted and the response and the assertion are signed, both signatures will have an ID of `signature1` which leads to an invalid xml because the ids have to be unique. A similar issue has been reported and fixed the same way in server.py with this commit: 4375361
diff --git a/src/saml2/entity.py b/src/saml2/entity.py
@@ -874,7 +874,7 @@ def _response(
                         _assertion.signature = pre_signature_part(
                             _assertion.id,
                             self.sec.my_cert,
-                            1,
+                            2,
                             sign_alg=sign_alg,
                             digest_alg=digest_alg,
                         )

Original file line number	Diff line number	Diff line change
`@@ -874,7 +874,7 @@ def _response(`
`874`	`874`	`_assertion.signature = pre_signature_part(`
`875`	`875`	`_assertion.id,`
`876`	`876`	`self.sec.my_cert,`
`877`		`- 1,`
	`877`	`+ 2,`
`878`	`878`	`sign_alg=sign_alg,`
`879`	`879`	`digest_alg=digest_alg,`
`880`	`880`	`)`