Stack Overflow
Stack Overflow

Questions tagged [spring-saml]

Spring Security SAML Extension enables seamless inclusion of SAML 2.0 Service Provider capabilities in Spring applications.

Spring Security SAML Extension enables integration of Spring applications with all SAML 2.0 Identity Provider products such as ADFS 2.0, Shibboleth, OpenAM/OpenSSO, Ping Federate and Okta.

Official Website: http://projects.spring.io/spring-security-saml/

Useful links:

753 questions
3
votes
1 answer

Spring SAML - Reading and refreshing IdP metadata at runtime

I am using WSO2 and SSOCircle with the Spring-SAML extension. We are testing configurations at this time and have defined 2 IdP's and 2 SP's within our applicationContext. So, currently, we have 2 statically defined IdP's within our spring xml…
Jim Kennedy
  • 782
  • 9
  • 23
3
votes
2 answers

SAML 1x vs SAML 2.0

I have theoretically learned how SAML 2.0 works both in IdP initiated & SP initiated model. Can some one point me how SAML 1x works? I am not seeing any proper material about SAML 101. And i have some basic question. What is SAML 101, SAML 1.0 &…
Mohan
  • 699
  • 1
  • 11
  • 27
3
votes
1 answer

Spring SAML 2.0 - Importing an IDP's local Metadata - MetadataProviderException

I've implemented SAML 2.0 in my system (I am playing the SP role). Everything works fine when I integrate with IDPs with remote metadata, that is given to me by a URL. I'm trying to integrate with IDP that has sent me its metadata and for some…
Asaf Savich
  • 623
  • 1
  • 9
  • 29
3
votes
1 answer

Issue with SSO between SAML SP and ADFS IdP

we are developing a web application which offers multiple login mechanisms such as LDAP, Kerberos, SAP Logon Ticket as well as SAML. For this we use the Spring Security Framework which works (mostly) fantastic! A few months ago we added SAML support…
hlpinform
  • 111
  • 8
3
votes
2 answers

Propagate SAML Assertion Response/Security Context to downstream Services/Apps

We have multiple services in our environment. There are scenarios where we want the user to auto-login/silently login to one or more participating services without being challenged by the Identity Provider for credentials or communicating with the…
Hello User
  • 31
  • 3
3
votes
1 answer

How can I force Spring SAML to reread my IDP metadata?

I've implemented a spring saml metadata provider that reads from a database and serves up both my service providers and identity providers. I'm also leveraging aliases to act as tenant identifiers. My problem is if I go into the database and modify…
mellocello
  • 151
  • 1
  • 7
3
votes
0 answers

Spring SAML Logout handling

When the SAML logout handler is called, how do I identify the user and what relevant sessions are being invalidated? The LogoutHandler interface has: void logout(HttpServletRequest request, HttpServletResponse response, Authentication…
egaga
  • 21,042
  • 10
  • 46
  • 60
3
votes
1 answer

NameID element must be present as part of the Subject

Hey I am trying to configure IDP with my service provider but when saml response comes from IDP I got this error in my service provider org.opensaml.common.SAMLException: NameID element must be present as part of the Subject in the Response message,…
Eva Tomovska
  • 105
  • 2
  • 9
3
votes
1 answer

Spring Security SAML Extension - Load Balancer Support

According to the spring security SAML extension documentation, there are changes required to the spring context to make the extension work behind a load balancer (using reference guide here:…
angrycrab
  • 830
  • 1
  • 9
  • 23
3
votes
2 answers

Spring Security SAML with roles from database

I'm trying to integrate SAML SSO into an existing application that uses Spring Security with users, groups, and roles/permissions stored in a MySQL database. The application currently uses to get users and roles from the…
Ginkobonsai
  • 177
  • 3
  • 13
3
votes
2 answers

Spring Security SAML: Getting block to appear in

I'm having a hard time trying to get Spring Security SAML to work with ADFS 2.0. Based on my current configuration, the generated AuthnRequest looks like this:-
limc
  • 39,366
  • 20
  • 100
  • 145
3
votes
0 answers

How can I disable idp discovery in Spring Security SAML

I am setting up the spring security saml framework. Now trying to integrate the sample web application (http://docs.spring.io/autorepo/docs/spring-security-saml/1.0.x-SNAPSHOT/reference/htmlsingle/#sample-app). However, I would like to skip the…
Pesho
  • 41
  • 5
3
votes
1 answer

Dynamic entityBaseUrl in MetadataGenerator

I have a single web server which serves multiple tenants. Each tenant has it's own hostname. But it seems that MetadataGenerator can have only single entityBaseUrl at a time. Is it possible either to use several instances of MetadataGenerator or to…
skozlov
  • 384
  • 1
  • 12
3
votes
2 answers

How does Spring Security SAML extension handle subsequent requests after authentication?

I'm using the Spring Security SAML extension for my SP. After a user is authenticated from the IDP, the SP uses some sort of method to allow subsequent calls to not have to be reauthenticated with the IDP. How is this done in the Spring Security…
AndyB
  • 1,896
  • 2
  • 22
  • 32
3
votes
1 answer

Cannot deploy Spring Security SAML sample application correctly

I'm trying to deploy the sample application that's part of the Spring Security SAML extension, using SSOCircle as the IDP, but I've run into a number of problems. I'd really appreciate some help fixing this. Here's what I've done. I downloaded the…
A-G
  • 305
  • 4
  • 12
1 2 3
50 51