Stack Overflow
Stack Overflow

Questions tagged [saml]

Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.

Security Assertion Markup Language (SAML) is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).
SAML is a product of the OASIS Security Services Technical Committee.

Also see SAML2.0

3545 questions
1
vote
1 answer

Which SAML version to use to interop custom STS/IdP and Azure AD for Office365 authentication?

Trying to do interop our custom STS/ IdP (supports SAML2. protocol) and Azure AD for Office 365 authentication using WS-Fed UsernameToken Profile. Referred this link where it says, "Office 365 supports SAML2.0 protocol". But from this STS…
Zeigeist
  • 3,755
  • 3
  • 20
  • 22
1
vote
2 answers

How do I build a SAML login link dynamically?

I want a link on my login page that says "Log in with [identity provider]". For ssocircle, apparently the login link is https://idp.ssocircle.com/sso/idpssoinit?metaAlias=%2Fpublicidp But this link isn't located anywhere in the XML used to…
Andrew
  • 1,571
  • 17
  • 31
1
vote
0 answers

AWS on Sing Out request also end session in Shibboleth

I configured SAML authentication using this guide. My problem is that to logout from AWS I have to do 2 steps. Sing Out from AWS console End session in Shibboleth accessing logout link https://idp.example.com/idp/profile/Logout Can I configure…
Vladlen Gladis
  • 1,699
  • 5
  • 19
  • 41
1
vote
1 answer

Which AssertionConsumerServiceURL should an IdP use?

If a SAML IdP has a preconfigured ACS URL (e.g., one that comes from SP metadata), should it ignore the one sent in an AuthNRequest?
Ben
  • 2,422
  • 2
  • 16
  • 23
1
vote
1 answer

SSO: How to login in Meteor without a password?

I have implemented SSO connecting ADFS with SAML in Meteor, and I can get the SAML response from ADFS successfully. Now I have a username from AD and I want to authenticate the username to login. The only problem is that I do not know how to login…
Shengtong Zhang
  • 11
  • 1
1
vote
1 answer

Saml Implementation on diverse backend technologies

I need to implement SAML in Angular applications having variety of backend technologies as java, node, an esb and a couple more. There are too many applications and can not rewrite backends, so what is the good stragedy / architecture to implement…
mcvkr
  • 3,209
  • 6
  • 38
  • 63
1
vote
1 answer

Clarification on SP vs IdP initiated SSO

I have a couple of questions on SP and IdP initiated SSO. With IdP-iniated SSO does my www.application.com URL point to the IdP server? If it points to the actual application how does IdP actually work? For SP-initiated SSO, is authentication…
Dmitriy Konyayev
  • 57
  • 4
1
vote
0 answers

What options are there when we have a SAML 2.0 environment and want to apply it towards .Net Core?

I've been seeing that there is no support for SAML in .Net Core. Due to existing environment restrictions, we need to leave the SAML process in place. Other developers are pushing new development in .Net Core. My response would be to develop in…
Daniel F. Salazar
  • 43
  • 5
1
vote
2 answers

How should mapping of service provider users to identity provider users work?

I'm working on setting up a service provider that supports SAML. I've added two identity providers - one custom one that I built from SimpleSAMLphp and then ssocircle. So I log in to the selected identity provider, and then it returns to my…
Andrew
  • 1,571
  • 17
  • 31
1
vote
0 answers

SAML account binding/linking (with Okta)

I'm in a process of implementing SAML 2.0 based SSO capability for a web application. So far, I've managed to successfully use/test Okta and Ping (which are at the moment the main target IdPs however, the goal is of course to be compatible with any…
Plain Ol' Human
  • 45
  • 5
1
vote
1 answer

Getting a SAML assertion after creating a session via API

Related to Accessing Third Party Apps After Creating A Session Via API Token and to AWS API credentials with OneLogin SAML and MFA Since AWS assumeRoleWithSAML temporary security credentials are only valid for one hour and we have a few different…
Emii Khaos
  • 9,983
  • 3
  • 34
  • 57
1
vote
1 answer

OneLogin for Java: configure certificate and PK

How do I configure certificate and PK exactly ? For security I probably don't want to keep my PK in my source code. So how do I specify a custom path ? But in the meantime is this correct ? # Usually x509cert and privateKey of the SP are provided by…
Simon
  • 21
  • 1
1
vote
1 answer

OneLogin for Java - Beginner Issues

A few days ago I downloaded java-saml-2.0.1 in the hope of using it to implement SSO via SAML in my (SP) app. I am actually not a Java developer (I am C#) but working on this nonetheless. Also very little familiar with SSO/SAML, so please forgive…
AnalogKid17
  • 93
  • 1
  • 2
  • 9
1
vote
1 answer

OneLogin SAML logout functionality

I want to implement logout functionality for Onelogin SAML in ASP.net MVC. Can anyone please share me sample application for Onelogin SAML logout functionality with redirection. I have already refer onelogin…
patel hiren
  • 11
  • 2
1
vote
1 answer

How to load properties files inside a filter

I have an application that requires SAML implementation so I included a filter to do the verification or required redirect. The redirect works and everything is fine, however, the redirect URL changes depending on the environment in which I'm…
avillagomez
  • 443
  • 1
  • 8
  • 18
1 2 3
99 100