Questions tagged [saml-2.0]

Security Assertion Markup Language 2.0 (SAML 2.0) is a standard providing means to exchange authentication and authorization data between security domains. It is typically used to achieve cross-domain single sign-on (SSO) and creation of security tokens.

Security Assertion Markup Language (saml) is an xml-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions). saml is a product of the oasis Security Services Technical Committee.

SAML version 2 (saml-2.0) adds digital signatures and resolves back into the SAML standard enhancements made to the SAML 1.1 (saml-1.1) specification by other systems (for instance Shibboleth and WS-federation).

SAML 2.0 is significantly different from SAML 1.1 and is not backwards compatible, although many systems can handle both.

Questions should have this tag when they are specifically related to SAML 2.0, more general SAML questions should have the less specific saml tag instead.

3007 questions

votes

3 answers

SAML Attribute Mapping for Aws Cognito - Signup or Signin works but not both

I have setup my GSuite account as a SAML iDP for Cognito User Pools (not identity pools). If i provide no attribute mappings a new user trying to signup via GSuite login gets the following error. Error in SAML response processing: Invalid user…

saml-2.0 amazon-cognito google-workspace

asked May 16 '18 at 08:18

Adam Mills

7,719
3
31
47

votes

7 answers

How to verify a SAML signature for HTTP-redirect binding

I'm receiving a SAML request via HTTP-redirect binding the content of the SAML request look like this {"SigAlg"=>"http://www.w3.org/2000/09/xmldsig#rsa-sha1", …

xml saml-2.0 xml-signature itfoxtec-identity-saml2

asked Jan 04 '17 at 14:47

Ratatouille

1,372
5
23
50

votes

1 answer

SAML based SSO with Laravel

I'm implementing SAML based SSO for one of the php web application. I'm using google as IDP. I've used Laravel 5 - Saml2 plugin and configured as per the steps given into it's documentation. I also added this app in google admin console as SAML app…

php single-sign-on laravel-5.1 saml-2.0

asked Mar 15 '16 at 14:03

Ashok Dongare

votes

1 answer

Getting list of groups user is associated with in Okta

I'm trying to integrate with Okta SSO by implementing SAML 2.0 in my website as Service Provider (SP) and Okta env. as my Identity Provider (IDP) I can't understand how to configure my IDP to return for each Auth request, the groups a user is in.…

saml-2.0 okta okta-api

asked Mar 09 '16 at 13:43

buddy123

5,679
10
47
73

votes

1 answer

How to add new idp metadata in spring-SAML at runtime

I am integrating spring-security-saml extension to support SSO in my web-application, my application should allow different customers to add their IDP metadata and their certificate to my webapp (which is an SP) so that my webapp can initiate SSO…

spring-security saml-2.0 spring-saml

asked Nov 26 '14 at 10:09

Rahul

votes

3 answers

ACS75005 "The request is not a valid SAML2 protocol message." Is showing always when I connect to Windows Azure Active Directory using SAML

I'm trying to consume Windows Azure Active Directory as an IdP in a web application. My code works fine on other SAML IdPs but gives the following message in the Windows Azure AD only !! Sign in Sorry, but we're having trouble signing you in. We…

.net azure saml-2.0

asked Aug 04 '14 at 13:37

Homam

23,263
32
111
187

votes

1 answer

"HTTP Status 401 - Authentication Failed: Incoming SAML message is invalid" with Salesforce as IdP for implementating SSO

I've implemented SSO using Spring SAML and everything is working fine. It worked with the following IDP's till now: 1) idp.ssocircle.com 2) openidp.feide.no Now I'm testing with salesforce.com as my Identity Provider. As there is no provision to…

spring-security salesforce single-sign-on saml-2.0 spring-saml

asked Apr 14 '14 at 11:42

abhilash

votes

2 answers

Difference between AssertionConsumerServiceURL , Destination , Consent in

I have been trying to generate SAML object using opensaml-java. Ref:slide #30 in https://www.oasis-open.org/committees/download.php/12958/SAMLV2.0-basics.pdf

java saml-2.0 opensaml

asked Feb 04 '14 at 05:46

mavis

3,100
3
24
32

votes

2 answers

how to configure java app to act as Identity Provider

I have a very simple java web app where I can manage user registration and authentication. I want to act this application as SAML identity provider. Then I'm going to create another simple web app, which would require user to be authenticated before…

java configuration single-sign-on saml-2.0

asked Dec 11 '13 at 14:05

user1745356

4,462
7
42
70

votes

2 answers

HttpSession returned null object for SPRING_SECURITY_CONTEXT

I'm trying to integrate the Spring Saml library in a sample webapplication, using Shibboleth as IDP. I'm able to load the login page, to login and to show the index page. The problem is that when I click on other links the webapp redirect me to the…

spring spring-security saml-2.0 opensaml spring-saml

asked Oct 01 '12 at 16:16

Emanuele

votes

1 answer

How to configure Single Logout when using Google Apps as the Identity Provider?

As outlined in the Google docs you can use Google Apps as a SAML 2.0 IdP. The IdP metadata includes a URL for SSO, but doesn't contain a SLO URL:

single-sign-on google-apps saml-2.0 google-sso

asked Jul 16 '18 at 11:24

Tobias Mühl

1,788
1
18
30

votes

1 answer

SSOCircle keeps redirecting to Consent page SAML2.0

I am using SSOCircle to test out my SAML implementation with Codeigniter. The current steps are: Access website.com Redirected to SSOCircle Consent Page Verify identity Pass user data back to website.com However, after step 3, it goes to step 4…

php codeigniter saml saml-2.0 simplesamlphp

asked Mar 10 '18 at 04:34

JianYA

2,750
8
60
136

votes

3 answers

SAML Http Request Intercept with Spring Boot

In reference to this SO question Add request parameter to SAML request using Spring Security SAML I am wanting to replace the default HTTPRedirectDeflateBinding bean with my own that has a custom HTTPRedirectDeflateEncoder to add query params to my…

java spring-mvc spring-boot spring-security saml-2.0

asked Jan 31 '18 at 21:42

Fratt

votes

1 answer

getting CORS error with SAML 2.0

I am getting a CORS error when trying to authenticate an access using SAML 2.0 and I am at a complete loss. We have a backend web server which serves 3 different paths /html /js and /services. We have defined a SAML ID provider, imported the IDP…

cors saml-2.0

asked Mar 30 '16 at 18:14

Dinesh

4,437
5
40
77

votes

3 answers

How to generate saml 2.0 sso service metadata

We have created many SAML implementations in the past. Normally, the client would send us SAML XML data containing key info, user info, certificate , etc and we would parse the info, match key and certificates. And get user's unique identifier from…

c# asp.net saml saml-2.0

asked Jun 11 '15 at 13:54

Suhail Wani

Prev 1 2 3

…

99 100 Next