When signing SAML core impls, callers shouldn't add a SAMLObjectContentReference...
[java-idp.git] / src / edu / internet2 / middleware / shibboleth / idp / profile / saml2 / AbstractSAML2ProfileHandler.java
index b44c293..dfa4dcf 100644 (file)
@@ -476,9 +476,7 @@ public abstract class AbstractSAML2ProfileHandler extends AbstractSAMLProfileHan
         if (log.isDebugEnabled()) {
             log.debug("Signing assertion to relying party " + requestContext.getPeerEntityId());
         }
-        SAMLObjectContentReference contentRef = new SAMLObjectContentReference(assertion);
         Signature signature = signatureBuilder.buildObject(Signature.DEFAULT_ELEMENT_NAME);
-        signature.getContentReferences().add(contentRef);
         
         signature.setSigningCredential(signatureCredential);
         try {