saml-2.0

问题 I've a requirement to integrate SAML authentication with rest API, so that I can make my rest services stateless, the approach which I've taken is as follows Developed an authentication service behind zuul proxy which is running behind AWS ALB User tries to generate token via endpoint https://my-domain/as/auth/login Since user is not logged in, so he gets redirected to IDP where he authenticate After authentication the IDP redirect user back to my service i.e. at URL https://my-domain/as/auth

问题 I am tasked with setting up SAML 2.0 Single Sign On via the Sustainsys (Kentor) library for the project I am currently working on. Here is the documentation I have been following. The website is a webforms application so I am using the HTTPModule portion of the Sustainsys library. I have configured my IDP (Okta) to send the SAML 2.0 assertions to the website which the documentation proclaims the Endpoint to be /Saml or /Saml/Acs . The site is a Kentico CMS website and the CMS offers an API

问题 Is someone with experience in using Wss4jSecurityInterceptor able to help figuring out if we are doing something wrong regarding a SAMLCallbackHandler for supplying the assertion for the security header of a SOAP call? Specifically: org.springframework.ws.soap.security.wss4j2.Wss4jSecurityInterceptor Context: We are building a service bus using Spring Boot + Spring Integration, which needs to be able to consume and produce requests signed with SAML, not in the context of SSO. We have picked

问题 Is someone with experience in using Wss4jSecurityInterceptor able to help figuring out if we are doing something wrong regarding a SAMLCallbackHandler for supplying the assertion for the security header of a SOAP call? Specifically: org.springframework.ws.soap.security.wss4j2.Wss4jSecurityInterceptor Context: We are building a service bus using Spring Boot + Spring Integration, which needs to be able to consume and produce requests signed with SAML, not in the context of SSO. We have picked

问题 In SAML, is it possible to force the user to go through idp's login process everytime even when the user has an active idp session? To make a concrete example here: Let's call my application "SP" I use SSOCirecle as idp and I use POST and redirect (SP initiated). To test, I will first login to SSOCircle to get an active idp session. Then when I try going to SP, I should be redirected to idp. Normally, since I already have an active idp session, the idp will see "oh, you already being

问题 Might be the question is already answered before but I cant find any answer for my problem so I ask you my question. I am trying to implement SAML2 based SSO with OKTA. For that purpose I created a dev account at oktapreviw. I downloaded spring securty saml2 example at this link http://projects.spring.io/spring-security-saml/#quick-start and by using this link https://docs.spring.io/spring-security-saml/docs/1.0.x/reference/html/chapter-idp-guide.html#d5e1816 I adopted my configuration and

问题 I have a Government Web Server with an exposed service that I need to consume. So far, for other services of the same Web Server I have done this: I created a CustomBinding, which creates a Header with only the Security tag. This is the code: var sec = new AsymmetricSecurityBindingElement( new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode.Never), new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode

问题 I have a Government Web Server with an exposed service that I need to consume. So far, for other services of the same Web Server I have done this: I created a CustomBinding, which creates a Header with only the Security tag. This is the code: var sec = new AsymmetricSecurityBindingElement( new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode.Never), new X509SecurityTokenParameters(X509KeyIdentifierClauseType.Any, SecurityTokenInclusionMode

问题 The bounty expires in 7 days . Answers to this question are eligible for a +50 reputation bounty. Varun wants to draw more attention to this question. I have created an application with Spring boot based backend and frontend in react. For its authentication I would like to use Azure AD + SAML2. I am unable to find any reference material to do it with standalone applications like this, with node+react(hosted on express) its feasible, with pure java based web application it seems feasible but

来源： https://stackoverflow.com/questions/39370754/how-to-get-authentication-service-user-account-info-in-front-end