From 59f7d7950326fb292301613d4d22dca74a75745c Mon Sep 17 00:00:00 2001
From: Thomas Lenz <thomas.lenz@egiz.gv.at>
Date: Thu, 6 Dec 2018 10:12:33 +0100
Subject: change signing-required to false on SL2.0 redirect

---
 pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/helper/PdfAsHelper.java | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/helper/PdfAsHelper.java b/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/helper/PdfAsHelper.java
index 8aeda417..d327e27d 100644
--- a/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/helper/PdfAsHelper.java
+++ b/pdf-as-web/src/main/java/at/gv/egiz/pdfas/web/helper/PdfAsHelper.java
@@ -1124,8 +1124,9 @@ public class PdfAsHelper {
 					
 				}
 				
+				//SL2.0 redirect and call commands do not require signed payload
 				VerificationResult respPayloadContainer = SL20JSONExtractorUtils.extractSL20PayLoad(
-						sl20Resp, joseTools, WebConfiguration.isSL20SigningRequired());
+						sl20Resp, joseTools, false);
 				
 				if (respPayloadContainer.isValidSigned() == null)
 					logger.debug("Receive unsigned payLoad from VDA");
-- 
cgit v1.2.3