Stack Overflow
Stack Overflow

Questions tagged [saml]

Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.

Security Assertion Markup Language (SAML) is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).
SAML is a product of the OASIS Security Services Technical Committee.

Also see SAML2.0

3545 questions
13
votes
2 answers

InvalidNameIDPolicy working with ADFS

I have many clients that uses SSO, for that we use SAML 2. Many of my clients uses providers like Okta, PingIdentity and a bunch of them ADFS. Doing the integration with ADFS always at the beginning raises this error when they came back with the…
wcpaez
  • 321
  • 1
  • 3
  • 9
13
votes
1 answer

Google Apps SAML error app_not_configured_for_user

I'm trying to enable SAML for our domain so that Google Apps is our idP Unfortunately we're getting an error which we can't solve. 403. That’s an error. Error: app_not_configured_for_user Service is not configured for this user. Request…
Nico
  • 717
  • 8
  • 16
13
votes
3 answers

Requester/InvalidNameIDPolicy Error with SimpleSAMLPHP SP and ADFS IDP

After looking all over the Internet, particularly ADFS 2.0 InvalidNameIDPolcy Using SimpleSAMLphp to Authenticate against ADFS 2.0 IdP Requester/InvalidNameIDPolicy I tried all the suggested modifications to authsource.php and metadata php.…
YarGnawh
  • 4,574
  • 6
  • 26
  • 37
13
votes
3 answers

How to implement or integrate single sign on with SAML and Shibboleth

We have two separate products, both including web app and server. We want to implement Single Sign On for both of them, so when a user has logged into one product, he can automatically access resources in the other product belonging to him. I have…
performanceuser
  • 2,793
  • 5
  • 34
  • 44
13
votes
1 answer

SAML NameId Policy

I am new to the concept of Single Sign On(SSO). I came to know that SAML request and response is the best way to achieve SSO process. I then started reading about SAML2.0. I came around a term NameIdPolicy in saml2.0 which was not there in saml1.0.…
suraj
  • 1,828
  • 12
  • 36
  • 64
12
votes
2 answers

Is there a good SimpleSAMLphp SLO example?

One of our clients is requesting that we implement Single Logout (SLO) through SAML. Their side of the SAML service is the Identity Provider, while ours is the Service Provider. Single-Signon (SSO) works by validating the user's credentials with…
eswald
  • 8,368
  • 4
  • 28
  • 28
12
votes
1 answer

Passport + SAML with metadata.xml file

I'm setting up a web application with express and ejs and need to integrate SAML authentication. I've got a metadata.xml, a public cert and a private key. Now I want to set up this strategy and use it for authentication. I tried to use a module…
Timo
  • 429
  • 3
  • 12
12
votes
4 answers

Why is using a certificate, made with the MakeCert tool, in production bad?

I'm currently working on a project where I've created a CA cert and a couple of child certs to that CA cert. The certificates are going to be used to protect inter-server communication in a SAMLV2 setup so I'm going to have a cert for the identity…
JohannesH
  • 6,430
  • 5
  • 37
  • 71
12
votes
1 answer

Impersonate java.lang.IllegalStateException: UserDetailsService is required

I am trying to implement the impersonate using SwitchUserFilter in Spring but I'm getting an error. The project runs good without this implementation. Also the project is using Java annotations not xml configuration and has SecureAuth…
Angel Cuenca
  • 1,637
  • 6
  • 24
  • 46
12
votes
1 answer

How to use opensaml v3? There is little to no documentation and v2 is EOL

Is there an end to end example of using Open SAML library v3? I can't find any documentation and as per https://wiki.shibboleth.net/confluence/display/OpenSAML/Home the v2 is EOL. I'm using following code to get SAML assertion- private…
gauravphoenix
  • 2,814
  • 3
  • 25
  • 33
12
votes
6 answers

Central login with SAML and making site to work as identity provider

So my scenario goes like : I have two sites a.com and site b.com and one authentication server cauth.com. what client wants is ... When user lands on a.com or b.com user fills in the login form on respective site , but the action of form will be on…
alwaysLearn
  • 6,882
  • 7
  • 39
  • 67
12
votes
1 answer

Python - Logging in to Site with SAML 2.0

I am struggle to find resources to help me with an issue I have. I have a site secured with SAML 2.0. Can someone point me to a resource(s) showing how to login to a site using SAML 2.0? Most of the python modules out there seem to be in regards…
code base 5000
  • 3,812
  • 13
  • 44
  • 73
12
votes
4 answers

Thinktecture IdentityServer v3 and SAML

Does Thinktecture IdentityServer V3 has support for SAML or does it only support OAuth?
Greens
  • 3,061
  • 11
  • 43
  • 61
12
votes
2 answers

Is there a standard for using SAML tokens with RESTful services?

I'm using SAML tokens to authenticate against a set of REST-ful services, by putting the SAML token in the Authorization header. I can't find anything out there that would suggest that there's a standard way to do this. For example, do I…
Roger Lipscombe
  • 89,048
  • 55
  • 235
  • 380
12
votes
2 answers

What is the purpose of SAML 2 Subject Name Identifier?

When doing authn against a SAML 2 IdP, what does the Subject Name Identifier supposed to be for? Does it track each user login? I'm wondering if my SAML 2 service provider application should track these for different users. Since they are transient,…
danludwig
  • 46,965
  • 25
  • 159
  • 237
1 2 3
99 100