saml-2.0

来源： https://stackoverflow.com/questions/29954876/spring-security-saml-assertion-expiry-with-application-session-expiry

问题 I have a Java web application. I want to implement SAML Single-Sign-On login for my application. I have got this GitHub onelogin program to send request and get response. But it was not working properly. I created one account there. But I don't have an enterprise account. When I run the application, it is going to onelogin login page. I tried to login, but it is not returning anyuthing in the response, showing I don't have permission. If I provide wrong credentials also, it is not giving any

问题 In Azure AD i have a multi-tenant Enterprise Application and App registration that are accessed through SAML2. I receive a limited set of users attributes, including tenant-id, email, first name, last name. But the organisation that the user belongs to, has defined extension attributes in their on-premise AD that i want to consume in my application. Also i would like to receive the jobTitle and Department in the application. The organisation says they have set up synchonisation of the

问题 I am using the WSO2 Identity Server 5.10.0 and I am trying to implement WSO2IS with an external ADFS Server. I have followed https://docs.wso2.com/display/IS570/Configuring+AD+FS+as+a+Federated+Authenticator example and configure my ADFS as Identity Provider from the WSO2 Admin Console. The server is able to redirect to the ADFS login page but when the ADFS sends a callback to the WSO2IS it is throwing NullPointerException. The complete Stack trace is as follows: [2020-04-02 17:49:56,407]

问题 I am using the WSO2 Identity Server 5.10.0 and I am trying to implement WSO2IS with an external ADFS Server. I have followed https://docs.wso2.com/display/IS570/Configuring+AD+FS+as+a+Federated+Authenticator example and configure my ADFS as Identity Provider from the WSO2 Admin Console. The server is able to redirect to the ADFS login page but when the ADFS sends a callback to the WSO2IS it is throwing NullPointerException. The complete Stack trace is as follows: [2020-04-02 17:49:56,407]

问题 We integrated our Applications with Okta via SAML. The Okta integration works till Tomcat 9.0.29 Server but from Tomcat 9.0.30, facing Okta Loop issue. Tomcat Logs: There were no errors Browser: Issue occurs in IE and Chrome. SAML Status: <saml2p:Status xmlns:saml2p=“urn:oasis:names:tc:SAML:2.0:protocol”><saml2p:StatusCode Value=“urn:oasis:names:tc:SAML:2.0:status:Success” /></saml2p:Status> Added below code to Context.xml of Application as per it required from Chrome v80 (Cookie Behavior)

问题 We integrated our Applications with Okta via SAML. The Okta integration works till Tomcat 9.0.29 Server but from Tomcat 9.0.30, facing Okta Loop issue. Tomcat Logs: There were no errors Browser: Issue occurs in IE and Chrome. SAML Status: <saml2p:Status xmlns:saml2p=“urn:oasis:names:tc:SAML:2.0:protocol”><saml2p:StatusCode Value=“urn:oasis:names:tc:SAML:2.0:status:Success” /></saml2p:Status> Added below code to Context.xml of Application as per it required from Chrome v80 (Cookie Behavior)

问题 This should be redirecting my app to my AdFs signOut Page, and then redirect me back to my app. However, it simply redirects me to my route "/logout". Watching the log on my ADFS server nothing happens. [AllowAnonymous] [HttpGet] [Route("api/logout")] public async Task<IActionResult> Logout() { return SignOut(new AuthenticationProperties() { RedirectUri = "/logout" }, Saml2Defaults.Scheme); } SignIn works fine. I even tried this same approach, but does not work. Here, the ReturnUrl method

问题 I'm working with spring-security and spring-security-saml2-service-provider with versions 5.2.0.RELEASE. I'm trying after authentication by IDP to obtain the current Assertion in order to map it to a user in our local system. I use this code to obtain the Saml2Authentication object @Component @Log4j public class EventListener implements ApplicationListener<InteractiveAuthenticationSuccessEvent> { @Override public void onApplicationEvent(InteractiveAuthenticationSuccessEvent

问题 I am new to the OAuth2 concepts, SAML assertion and OpenSAML library in Java. I need my Java code to create a saml 2.0 assertions (may be XML string) using OpenSAML library. How we can create it? Please share the code and XML SAML 2.0 assertion. 回答1: I had created the SAML 2.0 assertions in my code using OpenSAML library (http://mvnrepository.com/artifact/org.opensaml/opensaml). The XML O/P is also shown below. import java.util.HashMap; import java.util.Iterator; import java.util.Map; import