SAML extension integration with fediz IDP (sub-project of CXF)
hi we are struggling to build and integrate this extension with fediz IDP (which is part of CXF 2.6.1). which version of this SAML extension is stable and tested? essentially we get the SAML token and...
View ArticleSAML extension integration with fediz IDP (sub-project of CXF)
hi we are struggling to build and integrate this extension with fediz IDP (which is part of CXF 2.6.1). which version of this SAML extension is stable and tested? essentially we get the SAML token and...
View ArticleConfigure POST ProtocolBinding in SAML authentication request
Hi everyone, Spring Security SAML insists on requesting the Artifact binding in the SAML authentication request (ProtocolBinding attribute): Code: <saml2p:AuthnRequest...
View ArticleVMWare Horizon and Spring Security SAML app
Hi team, have anybody successfully integrated this application with VMWare Horizon? I am trying to set it up but keep getting error in Horizon when adding metadata from spring-security-saml2-sample...
View ArticleArtifactResolutionService
Hello. i have this problem: the idp metadata has ArtifactResolutionService firewalled. in metadata i see this xml: Code: <ArtifactResolutionService...
View ArticleLogout problems - SecurityContextHolder.getContext().getAuthenticati on()...
Hi, I am running 1.0.0 RC1 and cannot get global or local logout to work. 1. Goto http://<server>:<port>/spring-security-saml2-sample/index.jsp 2. Get redirected to my IDP 3. Do login at...
View ArticleData storage and multiple service provider instances for failover
Hi, I am investigating running two instances of the same SAML SP on two Tomcat nodes for load-balancing and failover purposes. Does your implementation store data only against the session or does it...
View ArticleSAML JDK requirement
The documentation for the SAML extension states that JDK1.6+ is required. Is this statement correct and absolute or is there any hope of making it work with JDK1.5? Or to formulate the question a bit...
View ArticleDetermine whether user logged in or not?
Hi everybody, I want to check if user logged successfuly or not? I just try to use a method like this: Code: Â Â Â Â try { Â Â Â Â Â Â Â Â Â boolean isAuthenticated =...
View Articleconfiguring saml-sample (SP) to work with SafeNet (IdP)
Hi, I'm a bit new to SAML, so maybe there is something basic that I miss here. I read the wiki page, and succeeded to operate the saml-example to work as SP in front of the SSOcircle (the IdP). Till...
View Articleconfiguring saml-sample (SP) to work with Okta (IdP)
Some details: Okta (acting as the IDP) supports 2 methods of authentication: In IDP initiated the flow is: User goes to Okta and from their framework gets to the SP. In SP initiated the flow is: User...
View ArticleIDP and SP metadata refresh
Is it necessary to perform SP and IDP metadata refresh? I read the SP and IDP metadata from 2 files which do not change. How can I configure the Extension not to perform metadata refresh? Thanks, Mark
View ArticleCheck login
I have a context for the single sign on like this: A) User login on SP. After that user logout from SP and user will be logged out automatically in IDP. This case is OK. B) If user login on IDP, after...
View ArticleError Endpoint mismatch from fronting Tomcat with Apache
Hi, I have a web app running in Tomcat which is behind Apache. I set in Apache configuration that any requests to "http://xxx.cbu.uib.no/yyy" will be forwarded to "http://test.abcd.uib.no:7070" which...
View ArticleRelayState in URL
When my web app send SAML request to IDP. I see the URL does not contain RelayState field. I just find a solution for this problem on this link https://jira.springsource.org/browse/SES-50. But when I...
View ArticleSAML SSO with Swing Client, webapp SP and IdP using spring-security-saml2-core
My project is currently uses spring-security as follows: Has a webapp service provider (SP)SP uses LDAP as IdP username / password as auth tokensHas a Swing based fat client (FC) that accesses SP using...
View ArticleEasiest IDP to provide out-of-box with SAML2 SP
I am migrating a webapp that currently uses spring-security with basic authentication to use SAML2 SSO. By default the project provides the embedded LDAP server provided by...
View ArticleSAMLAuthenticationToken cannot be "authenticated" - why?
something that I probably miss, and maybe someone can spill some light. I saw that the SAMLAuthenticationProvider creates a new authentication token of type ExpiringUsernameAuthenticationToken. In my...
View Article1.0 rc3
Hi Vlad, Are there plans to release RC3 and 1.0 soon? I am curious about the release plans. Thanks, Ian
View ArticleERROR JKSKeyManager:120 - Error initializing key store
After successfully building, deploying and playing with the spring-security-saml2-sample I am trying to replicate it in my webapp. I am using a copy of the same JKS keystore as the one in...
View Article