Stack Overflow
Stack Overflow

Questions tagged [opensaml]

OpenSAML is a java and c++ library that provides low level handling of SAML messages

Reference for downloading the library and its general documentation: https://wiki.shibboleth.net/confluence/display/OpenSAML/Home

377 questions
4
votes
2 answers

How to configuration of IDP metadata and SP metadata in Spring Security SAML sample?

I want to deal with Spring Security SAML. For this, I start to explore Spring Security SAML. At the beginning, I create an account at SSOCircle. Than I configurated of IDP metadata and generation of SP metadata (4.2.2 and 4.2.3). At entityId I…
somebody
  • 1,077
  • 5
  • 14
  • 32
4
votes
3 answers

Spring SAML on Weblogic 12c

I'm currently working on an application that is making use of the Spring SAML (http://projects.spring.io/spring-security-saml/) project as part of our authentication. I know it is still in RC but so is the application we are working on. We have the…
user1795894
  • 165
  • 6
4
votes
1 answer

Service provider implementation using OPEN SAML - JAVA

After many analysis, Figured out that SAMLV2.0 is providing excellent service in exchanging data between the security web domains. My scenario is I am trying to implement Service Provider(SP) using Shibboleth's new OPEN SAML-JAVA…
mavis
  • 3,100
  • 3
  • 24
  • 32
4
votes
1 answer

Is there an API in OpenSAML library to check expiration of SAML2 token?

I am working with OpenSAML library to generate SAML2 tokens. I was under the impression that validation signature of the token will also check for its expiration which apparently is not the case. Is there an API provided by the library that I can…
nadirsaghar
  • 557
  • 1
  • 4
  • 20
4
votes
1 answer

SAML2 assertion encryption using public key (opensaml)

I've recently tried to encrypt Saml2 assertion using relaying-party service public key. Unfortunately I can't finalise even the test phase here is my code public class EncryptionTest { public static void main(String args[]){ try { // The…
Erwin
  • 522
  • 4
  • 20
3
votes
2 answers

How to ask IdP for user attributes in SAML

I have done a small piece of code which sends login and logout request and processes the corresponding responses using OpenSAML. If I'm not wrong I am supposed to be able to retrieve user attributes through SAML but I don't know how to ask for these…
Rafa
  • 85
  • 1
  • 10
3
votes
1 answer

Spring Saml2 and Spring Session - SavedRequest not retrieved (cannot redirect to requested page after authentication / InResponseTo exception)

I am trying to use Spring Boot SAML2 + Spring Session to secure my web application (to be deployed on K8S). Everything is fine without spring-session-data-rest or spring-session-hazelcast. It can authenticate with Okta and redirect back to the…
Simon Wong
  • 48
  • 3
3
votes
3 answers

Sping security OpenSAML 4.1.1 artifacts not found

I have a maven multi module project where I'm using spring boot 2.6.4 and spring security in a saml2 scenario. As far as I know spring uses opensaml and more exactly opensaml 4.1.1 I added this dependencies to the pom of my saml maven…
Angelo Immediata
  • 6,635
  • 4
  • 33
  • 65
3
votes
1 answer

SAML2 Authentication with authorization based on SAML assertions

I'm using spring-security-saml2-service-provider to authenticate my SpringBoot webapp against a SAML IdP - this works. I can also access the SAML assertions within a REST Controller using @AuthenticationPrincipal Saml2AuthenticatedPrincipal…
Jim ReesPotter
  • 445
  • 1
  • 3
  • 10
3
votes
2 answers

Saml2 Core upgrade fails when upgraded spring-security-saml2-core from 1.0.10.RELEASE to 2.0.0.M31

I recently tried to upgrade saml2-core from 1.0.10 to 2.0.0.M31. When I tried building the project it fails with many "cannot find symbol" and "package does not exists" exceptions. [ERROR]…
Alison
  • 31
  • 3
3
votes
3 answers

SAML getting Signature Reference URI did not resolve to the expected parent Element

In Spring SAML I am getting success response from IDP, but while validating the SAML response I am getting the exception Signature Reference URI '#JJl4B32SXAqLfdR2R0mkYN-yLimsrLWVGHmHIvEcpuQ' did not resolve to the expected parent Element. I am not…
rahul
  • 406
  • 1
  • 5
  • 14
3
votes
0 answers

Can't find replacement for SAMLCredential & SAMLUserdetailsservice in spring security saml 2.0.0.M31

We are trying to upgrade opensaml to version 3 as a part of which we also need to upgrade spring security saml to 2.0.0.M31, as the earlier versions work with opensaml 2.6.4. We can't find replacement for below classes in the code, these classes…
Ash21
  • 31
  • 1
3
votes
1 answer

Parsing SAMLRequest into an AuthnRequest using OpenSaml the Unmarshaller is NULL

I want to parse a SAMLRequest I obtain in an HttpServletRequest into an AuthnRequest Object so I can obtain it's issuer and other attributes. Using OpenSaml version org.opensaml
Nuno Mendes
  • 113
  • 1
  • 11
3
votes
0 answers

Performance of OpenSAML marshaller and unmarshaller

We are using opensaml libraries version 3.3.0 and seeing that marshalling takes 25% of the time of the request that comes to my server endpoint for processing. Especially this call AbstractXMLObjectMarshaller.marshall, similarly Signer.signObject…
yogsma
  • 10,142
  • 31
  • 97
  • 154
3
votes
1 answer

Assume role from aws cli with SAML

I'm trying to generate aws credentials using aws sts assume-role-with-saml from this documentation However I'm getting errors and I don't really understand, the flow. Normally I've a main account ACCOUNT_A where she SAML_PROVIDER resides and from…
nixmind
  • 2,060
  • 6
  • 32
  • 54
1 2 3
25 26