Stack Overflow
Stack Overflow

Questions tagged [saml]

Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.

Security Assertion Markup Language (SAML) is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).
SAML is a product of the OASIS Security Services Technical Committee.

Also see SAML2.0

3545 questions
11
votes
3 answers

Consume SAMLResponse Token

SAML sp-based authentication has following short workflow. User wants to access application at sp. sp sends SAMLRequest token to idp. idp consume it and generate SAMLResponse token. idp sends this SAMLResponse token to AC-URL given by sp. My…
Muhammad Imran Tariq
  • 22,654
  • 47
  • 125
  • 190
11
votes
2 answers

Python flask saml throwing saml2.sigver.SigverError Error Message

Has anyone succesfully implemented flask-saml using Windows as dev environment, Python 3.6 and Flask 1.0.2? I was given the link to the SAML METADATA XML file by our organisation and had it configured on my flask app. app.config.update({ …
cloudviz
  • 971
  • 4
  • 15
  • 40
11
votes
2 answers

OpendID Connect and IDP Initiated SSO

I have an application which is a Service Provider. Is it possible to implement an Idp initiated SSO with OpenID Connect? It looks like for Idp initiated SSO only SAML could be used, is that correct? Or is there a way to make OpenID Connect work as…
user1411018
  • 491
  • 1
  • 5
  • 12
11
votes
2 answers

Create SAML Authentication request using WIF

It seems most of the WIF information out there is useful for enabling federated authentication across entire applications. I'm interested in using the API to create SAML authentication requests and receive/interpret the SAML responses. I found the…
hackerhasid
  • 11,699
  • 10
  • 42
  • 60
11
votes
1 answer

Python SSO: pysaml2 and python3-saml

I new to SSO and I've only tried pysaml2 by far. I am also aware of python3-saml library (and its python-saml Python 2 flavour). I need to use one of those with Shibboleth, if it is relevant. What are the pros and cons of pysaml2 and…
Art
  • 2,235
  • 18
  • 34
11
votes
2 answers

Looking for feedback on a first SAML implementation

I've been tasked with designing a very simple SSO (single sign-on) process. My employer has specified that it should be implemented in SAML. I'd like to create messages that are absolutely as simple as possible while confirming to the SAML spec.…
morgancodes
  • 25,055
  • 38
  • 135
  • 187
11
votes
2 answers

SAML2 Metadata - Multiple Signing Certificates

I'm looking at a SAML IdP's metadata and it lists three unique certificates - 2 signing and 1 encryption. ...
Daniel Gatto
  • 113
  • 1
  • 1
  • 5
11
votes
1 answer

SAML Signing Certificate - Which SSL Certificate Type?

We're currently developing an SSL solution using SAML 2.0, and until now, have been using self signed certificates for signing the XML requests. However, as we move to production, we want to use a certificate from a certificate authority. But I'm…
stevehayter
  • 796
  • 1
  • 7
  • 23
11
votes
1 answer

Configuring GitLab to use SAML OmniAuth with an Active Directory IdP

I am in the process of altering an existing GitLab installation to use SAML rather than LDAP for authentication. At this point, users can successfully sign into the Web application using the 'Sign in with Saml' button. I am unclear, however, about…
jjw
  • 111
  • 7
11
votes
1 answer

SimpleSAMLphp Unable to validate Signature error

SimpleSAML_Error_Error: UNHANDLEDEXCEPTION Backtrace: 0 simplesamlphp/www/module.php:189 (N/A) Caused by: Exception: Unable to validate Signature Backtrace: 6 simplesamlphp/lib/SAML2/Utils.php:149 (SAML2_Utils::validateSignature) 5…
mmts
  • 137
  • 1
  • 1
  • 8
11
votes
6 answers

Canonicalizing XML in Ruby

I'm working on a SAML gateway using Ruby/Rails and I'm attempting to write some code that validates the xml digital signature of the incoming SAML response against the x509 cert of the originating service. My problem: the signature depends on a…
whazzmaster
  • 566
  • 1
  • 4
  • 16
11
votes
1 answer

Why should a SAML service provider trust a SAML response?

Reading from http://en.wikipedia.org/wiki/SAML_2.0 , I'm trying to understand the mechanism that guarantees the authenticity of the SAMLResponse sent in step 5 of the process. The way I understand it, SAML is designed so that the service provider…
Guillaume CR
  • 3,006
  • 1
  • 19
  • 31
11
votes
1 answer

SAML Client implementation for Android?

Is there a sample application which I can refer for SAML interactions on Android? Anyone successfully ported/used OpenSAML on Android ? I am trying to write a simple app which would (instead of browser redirection) use native APIs to carry out SAML…
VishJ
  • 238
  • 2
  • 3
  • 9
11
votes
1 answer

why is SAML based on browser

I am studying SAML and SSO, and it looks like the application that use SAML need to be a web application and relying on a browser. Can anybody tell me why? My limited knowledge of SAML tells me that SAML relies on session and cookie, which is not…
performanceuser
  • 2,793
  • 5
  • 34
  • 44
11
votes
1 answer

SAML assertion with username/password - what do the messages really look like?

I need to create a some SAML 2.0 assertions, and I'm having trouble finding what the XML should really look like. Most of the documentation seems to be about using particular tools, not about the messages. I've got the schemas, with a plethora of…
Mike Kantor
  • 1,400
  • 4
  • 24
  • 45
1 2 3
99 100