saml-2.0

问题 I am trying to implement the SP-initiated use case. For this what I have is: Identity Provider: a Federation Service (Active Directory). For me is a "black box". The only thing that I am suppose to provide to this service is the name, url and home page of my application. Also I have to provide an XML with the metadata of my Service Provider. Service Provider: Weblogic Server (10.3.4). Here I have configured a security realm, creating a Authentication Provider and a Credential Mapper Provider.

问题 I am trying to provide compatibility between an existing SAML token system with JWT token schema. The current system generates SAML tokens with a structure as follows: Is it even valid to have more than one in a SAML token and if yes what would be the JWT representation for the below <?xml version="1.0" encoding="UTF-8"?> <samlp:Response ID="aed9fa15c020fde" InResponseTo="acd3a67cb14a1d94" IssueInstant="2015-02-18T18:58:14.262Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"

问题 We are trying to setup a custom SAML integration with the Cisco WebEx. However WebEx SP keeps complaining about the "Invalid digital signature" after the SAML Response is sent to WebEx. We have already inspected the SAML Response, Signing Cert, and the Fiddler trace of the SAML transaction. Nothing seems out of ordinary. We have done this for several other services and have not run into any issues. Is there a good tool that can help us debug as to why WebEx is thinking the Digital Signature

问题 I am working on adding a custom SAML 2.0 identity provider (Okta) to use with my B2C tenant. I have configured it and it works great when I initiate the login from my application. However, when I initiate the login from the identity provider (Okta) it fails to login. The first attempt I received this error from B2C: "does not specify first step or the first step is not a claims exchange". As a result of this error, I removed the extra claims providers from the custom policy so the

问题 I'm trying to authenticate user logon with SAML . I have a simple HTML form. <form method="post" action="https://abcd/login"> <input type="hidden" name="SAMLRequest" value="request" /> <input type="hidden" name="RelayState" value="token" /> <input type="submit" value="Submit" /> </form> I'm confused about how I can send the base64 encoding of the XML for the SAMLRequest with just javascript . It would be a huge help if someone could point me in the right direction or link to a demo. 回答1: It

问题 To replicate the potential production scenario of an IdP initiated SAML request, I'm trying to set up a local (docker-based) version of OpenAM to serve as an IdP for an application (an SP) that I am developing. The application is written in Django and is reliant on its ability to resolve groups associated with the user whose identity is being asserted in the SAML response from this IdP. Specifically, I'd like to receive the names of groups for each user in SAML response in the following

问题 I have set up WSO2 Identity Server with Office 365 (AAD) Identity Provider, the sso sample app travelocity.com and configured my Azure Active Directory application with the necessary permissions.I have disabled user consent on both side, Azure AD & my Identity Server. Using the sample app, the login is working fine but I receive the following error from travelocity.com An error has occurred SAML2 Response Issuer verification failed I guess the authentication is working, from the debug logging

问题 Error : The specified network password is not correct. Description: An un handled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code. Exception Details: The specified network password is not correct. Reason: I can only export certificate '.pfx' with the password protected. "Kentor AuthServices" doesn't support password protected as I understand.. It is said that this issue

问题 I have following piece of code which is troubling me to read the value from Request.Params . Right now I just want to read values (in receiver) that I'm passing from sender i.e. username and SAMLResponse. Sender protected void Button1_Click(object sender, EventArgs e) { HttpWebRequest httpWReq = (HttpWebRequest)WebRequest.Create("MY URL"); httpWReq.Method = "Post"; XElement obj = XElement.Load(@"Load.xml"); StringBuilder postData = new StringBuilder(); postData = postData.Append("username

问题 I'm trying to setup SimpleSAMLphp IdP to send a SAML response to my local dev server (SP-initiated flow in this case) . This IdP is based on a Docker image from https://hub.docker.com/r/kristophjunge/test-saml-idp/ (ver. 1.15 I believe). The whole setup is to emulate a similar environment that I have whereby G Suite IdP is used against the same local dev SP - trying to eventually eliminate the cloud dependency from my local dev environment and replace it with an equivalent SimpleSAMLphp one.