I'm completely new to SAML, and well security in general so please forgive my ignorance and anything stupid I say.
I am using OpenSAML to produce a SAML Authentication Request. I had originally written all my code to use a a key pair that I had generated locally using OpenSSL. Now the time has come to integrate with my client who has provided me a MetaData file. I modified my code to use the FilesystemMetadataProvider class to load the file and create the credential based on the X509 data. I am now using a BasicX509Credential object in place of the BasicCredential that I was using with my local keys that I had generated.
Everything seems to work fine until I execute the Signer.signObject( signature ); At runtime this is giving me an exception:
java.security.SignatureException: object not initialized for signature or verification