Skip to content

SAML contains invalid <xenc:EncryptedData> tag after decryption #19585

New issue
New issue
Closed
Bug
#19592
Closed
SAML contains invalid <xenc:EncryptedData> tag after decryption#19585
Bug
#19592
Assignees
PeshekDotDev
Labels
bugSomething isn't workingtriageAdd this label to issues that need to be triaged
@PeshekDotDev

Description

@PeshekDotDev
PeshekDotDev
opened on Jan 19, 2026

Describe the bug

When we encrypt our saml responses, a bug causes them to have an xenc:EncryptedData tag inside after decrypting, making the saml invalid

How to reproduce

  1. Enable saml encryption
  2. Log into a provider

Expected behavior

The SAML should not have a xenc:EncryptedData tag after being decrypted

Screenshots

No response

Additional context

No response

Deployment Method

Other (please specify)

Version

2026.2

Relevant log output

Metadata
Metadata
Assignees
Labels
bugSomething isn't workingtriageAdd this label to issues that need to be triaged
Type
Bug
Projects
authentik Core
Status
Done
Milestone
No milestone
Relationships
None yet
Development
No branches or pull requests
Issue actions