Stack Overflow
Stack Overflow

Questions tagged [saml]

Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.

Security Assertion Markup Language (SAML) is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).
SAML is a product of the OASIS Security Services Technical Committee.

Also see SAML2.0

3545 questions
37
votes
2 answers

Working with SAML 2.0 in C# .NET 4.5

I am trying to use pure .NET (no external classes, controls, helpers) to create a SAML message. I found some code on the interwebs; this is what I have: private static SamlAssertion createSamlAssertion() { // Here we create some SAML assertion…
bugnuker
  • 3,918
  • 7
  • 24
  • 31
36
votes
11 answers

Can you recommend a SAML 2.0 Identity Provider for test?

I'm implementing a SAML 2.0 Service Provider and need to install a SAML 2.0 Identity Provider for testing. Given this need, the Identity Provider should ideally be free (or have a trial period) and be easy to set up and configure. I'm looking for…
Steve Reed
  • 2,481
  • 2
  • 20
  • 20
34
votes
1 answer

What to present at SAML EntityID URL?

I am trying to implement a SSO that is provided by another website. The instructions ask me to enter "issuer" info. Which turns out is equivalent to the EntityID URL in the EntityDescriptor. I am assuming I need to set that URL to some url on my…
Lawrence Cooke
  • 1,567
  • 3
  • 26
  • 52
29
votes
1 answer

What's the difference between AWS SSO and AWS Cognito?

Let's say I have a few clients: corporation x, y, z. each of those corporation has their employees and their SSO (mostly SAML but can be also OpenId or anything else). I want to be able to integrate with their SSO so they can log in to my…
piotrek
  • 13,982
  • 13
  • 79
  • 165
29
votes
1 answer

SimpleSAMLphp State Information getting lost

I have a Service Provider set up at https://biz.dev.originsystems.co.za. I have an IdP set up at http://stage.originsystems.co.za. When testing the authentication with the tool at…
Andrew Cooper
  • 723
  • 2
  • 14
  • 28
29
votes
2 answers

NotOnOrAfter in SubjectConfirmationData and Conditions and SessionNotOnOrAfter

In the SAML2 specification there are several places in an assertion where it is possible to specify a lifetime. The element contains a NotOnOrAfter attribute. The element contains a NotOnOrAfter…
Anders Abel
  • 67,989
  • 17
  • 150
  • 217
28
votes
5 answers

Getting Started with SAML and PHP

I'm beginning work on adding SAML SSO support to a project and am looking for any helpful resources specifically geared towards PHP. I understand the basic concepts and have poked around for any libraries that could help but have come up empty. The…
Mike B
  • 31,886
  • 13
  • 87
  • 111
27
votes
5 answers

AADSTS700016: Application with identifier 'some_id' was not found in the directory 'some_another_id'

I need a federated authentication with custom policy (when user authenticated I need him to appear marked as Federated in b2c users, not Others or something else what I could achieve with single tenant), I had it before with default policy setup in…
basilio
  • 271
  • 1
  • 3
  • 4
27
votes
4 answers

Are SAML tokens cache/stored anywhere on the browser?

Scenario: Browser(User) requests resource from Service Provider (SP). SP Redirects (with SAML Request) to Identity Provider (IdP). Since it is first login, User gives the (IdP) his/her valid credentials. IdP then redirects Browser (with SAML…
funa68
  • 909
  • 3
  • 12
  • 21
26
votes
11 answers

Logging into SAML/Shibboleth authenticated server using python

I'm trying to login my university's server via python, but I'm entirely unsure of how to go about generating the appropriate HTTP POSTs, creating the keys and certificates, and other parts of the process I may be unfamiliar with that are required to…
David Perlaza
  • 580
  • 2
  • 5
  • 9
25
votes
2 answers

SSO with SAML, Keycloak and Nextcloud

I am trying to setup Keycloak as a IdP (Identity Provider) and Nextcloud as a service. I want to setup Keycloak as to present a SSO (single-sign-on) page. I am running a Linux-Server with a Intel compatible CPU. What is the correct…
MadMike
  • 1,391
  • 1
  • 16
  • 38
25
votes
4 answers

How to convert SAML XML token string to either SecurityToken or ClaimsPrincipal instance?

My context: .Net RESTful web service Client (mixed platforms, technologies, lib capabilities) has obtained a SAML token Trying to accept the token for authentication/authorization in the REST service in HTTP Authorization / X-Authorization…
Tyler
  • 859
  • 1
  • 8
  • 10
24
votes
3 answers

WIF 4.5 BootstrapContext security token null

I am using the new 4.5 WIF stuff to authenticate users of the website and to secure the communication between my MVC website and WCF services. I have the website configured to save the bootstrap context so that I can re-use the same security token…
Matt
  • 354
  • 3
  • 11
22
votes
2 answers

Is it recommended to Sign and Encrypt SAML AND use SSL?

Is it necessary to encrypt a SAML request if I am signing it with a my private key and sending it over SSL? Or would it be better practice to sign it using my private key, encrypt it using the identity providers public key AND transmit it over SSL?
nerdn
  • 329
  • 1
  • 3
  • 12
22
votes
3 answers

WebServices security with SAML (SSO) - How to?

The Problem: I want to implement a set of Webservices, protected with SAML. I need to authenticate the users, and also need to authorize based on the user role. I found some questions similar to this one, but none with satisfactory answers. The…
lpinto.eu
  • 2,077
  • 4
  • 21
  • 45
1
2
3
99 100