Stack Overflow
Stack Overflow

Questions tagged [spring-saml]

Spring Security SAML Extension enables seamless inclusion of SAML 2.0 Service Provider capabilities in Spring applications.

Spring Security SAML Extension enables integration of Spring applications with all SAML 2.0 Identity Provider products such as ADFS 2.0, Shibboleth, OpenAM/OpenSSO, Ping Federate and Okta.

Official Website: http://projects.spring.io/spring-security-saml/

Useful links:

753 questions
3
votes
3 answers

SAML getting Signature Reference URI did not resolve to the expected parent Element

In Spring SAML I am getting success response from IDP, but while validating the SAML response I am getting the exception Signature Reference URI '#JJl4B32SXAqLfdR2R0mkYN-yLimsrLWVGHmHIvEcpuQ' did not resolve to the expected parent Element. I am not…
rahul
  • 406
  • 1
  • 5
  • 14
3
votes
2 answers

SAML2 and Form based login in same application with Spring Security

I'm trying to figure out how to support both form-based login for most users and saml2-based (spring security 5.4) login for some users in our application. Users accessing app.exampleapp.com should be redirected to form login. Users accessing…
Goran Ehrsson
  • 71
  • 7
3
votes
2 answers

Building a SAML IDP

We are planning to build our own SAML IDP. I have a few questions: Does it make sense to build one? If yes, what's the approach? I don't see any Java libraries for SAML. Can't use spring-security-saml as that has support for integrating third party…
Praveen Kamath
  • 959
  • 2
  • 10
  • 18
3
votes
1 answer

Importance of keystore certificate for SAML SSO

I am new to certificates and keystores. What is the importance & working of keystores, and certificates for SAML SSO (in context of Spring boot SAML SSO)? I see .jks, .pem, .cer, .der, etc. in use. What are these?
Guru
  • 2,739
  • 1
  • 25
  • 27
3
votes
2 answers

Spring SAML: SAML message intended destination endpoint did not match recipient endpoint

I am getting 'Caused by: org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint' exception while SSO between my app SP and client IdP. Server log show the difference in schemas, see…
Hutsul
  • 1,535
  • 4
  • 31
  • 51
3
votes
2 answers

Error creating bean with name 'org.springframework.security.saml.SAMLBootstrap#0'

I am adding SSO code in the webpage using SAML. And for this process I added the following code for Maven. org.springframework.security
Jae Kim
  • 137
  • 1
  • 2
  • 6
3
votes
2 answers

Create JWT access token from a SAMLAuthenticationToken

In my application I have so far used the OAuth2 password grant flow to generate a JWT access token to clients providing their username and password using Spring Security and Spring OAuth. They then use that token in all requests to my Spring Boot…
darksmurf
  • 3,747
  • 6
  • 22
  • 38
3
votes
0 answers

Saml Bearer Assertion on OAuth Client to Server for authorization code grant

I want to implement SAML for authentication of user and OAuth to protect the API resources I developed. From bunch of readings I believe SAML bearer assertion workflow is what I am looking for. (Kindly correct me if it is wrong or any other…
user8453102
3
votes
1 answer

Shibboleth SSO and Spring SP: Unable to login due to "InResponseToField" mismatch error

In my production setup with 2 Service Providers and 2 IdP instances behind a load balancer, I'm seeing the following error in one of my SP's logs and I'm not sure why: InResponseToField of the Response doesn't correspond to sent message I'm using…
Maitreya
  • 31
  • 2
3
votes
0 answers

Spring SAML, Authentication object is null

I did refer all the forum to understand the problem I am facing. I still get the Authentication object null Tomcat version is 8.0.44 Java 1.7.0 I am not sure if security filter is getting called Please find details of security Context.…
Sunil Wakle
  • 33
  • 2
3
votes
1 answer

Spring saml demo build issue

Our company is planning on migrating to authenticating with SAML, so I am doing the tutorial using a sample demo to understand how to implement saml using the spring framework and Okta. I am following the tutorial (here:…
Al H
  • 31
  • 2
3
votes
1 answer

SAML: is it possible to force user to go through login process even when user has an IDP session

In SAML, is it possible to force the user to go through idp's login process everytime even when the user has an active idp session? To make a concrete example here: Let's call my application "SP" I use SSOCirecle as idp and I use POST and redirect…
user2628641
  • 2,035
  • 4
  • 29
  • 45
3
votes
0 answers

Authenticate username/password against IDP using Spring Security SAML

I'm aware of how SAML is used for single sign-on (SSO). That is redirection to IDP from SP and getting the user's identity from the SAML response/assertion. My question is: Can I use Spring Security SAML framework to define how to pass username and…
Aman
  • 1,170
  • 3
  • 15
  • 29
3
votes
0 answers

Spring Security combining SAML and backdoor Login

I have an application that is successfully authenticating against an SSO provider via SAML. However there are a handful of users who need to access the site via a regular login box. I would like the flow to be for normal users to be redirected to…
ant-depalma
  • 2,006
  • 4
  • 26
  • 34
3
votes
0 answers

Can SP Metadata be provided for the Spring Security SAML 2.0 extension (SP Initiated)?

I am trying to configure my Spring application to communicate with a third party IDP. My spring application is accessed through an Apache Webserver. However the Spring SAML extension automatically inserts the local address as the Assertion consumer…
Calvin Raveenthran
  • 311
  • 2
  • 10
1 2 3
50 51