How to get SAML response string after successful login from spring security saml

Question

I am using spring security saml extension for sso in my application. I am able to successfully integrate with adfs. Now I need the exact encoded SAML response we get from adfs to be passed to webservices downstream. How to get that SAML response string?

score 4 · Answer 1 · edited Feb 09 '18 at 11:43

If your SAML token is encrypted:

You can extend default SAMLAuthenticationProvider and override authenticate method. Inside this method you can get the complete SAML Response as follows:

SAMLAuthenticationToken token = (SAMLAuthenticationToken) authentication;
SAMLMessageContext context = token.getCredentials();
 try {

            String assertion = XMLHelper.nodeToString(SAMLUtil.marshallMessage(context.getInboundMessage()));
            System.out.println(assertion);
        } catch (MessageEncodingException e1) {
            // TODO Auto-generated catch block
            e1.printStackTrace();
        }

If your SAML token is not encrypted, you can use this:

Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
SAMLCredential credential = (SAMLCredential) authentication.getCredentials();
Assertion assertion = credential.getAuthenticationAssertion().getParent();

I got a compile error: Type mismatch: cannot convert from XMLObject to Assertion — Henry, Sep 15 '20 at 06:43

score 2 · Answer 2 · answered Feb 09 '18 at 07:38

2

See chapter 9.5 in the manual, it discusses how to keep the Assertion in the original format using the releaseDOM flag and how to extract it (in the same way as Agam writes).

answered Feb 09 '18 at 07:38

Vladimír Schäfer

15,375
2
51
71

How to get SAML response string after successful login from spring security saml

2 Answers2

Linked