spring-saml

问题 We are encountering a Response has invalid status code urn:oasis:names:tc:SAML:2.0:status:Responder SAMLException trying to run the Spring SAML sample application. The IDP is an ADFS 3.0 Server and the SP uses a self-signed URL. Following is the URL of the SP/App https://ec2-52-0-198-40.compute-1.amazonaws.com:8443/spring-security-saml2-sample/ The weird thing is this happens after successfully authenticating at the IDP - the first time only. If I try the URL second time, it remembers the

问题 I've implemented SSO using spring SAML and I'm wondering is there any way to request the IDP( ssocircle.com in my case) to send me additional attributes along with nameID which it is already sending. Lets say I want the IdP to send me the accountID of the person who is authenticated successfully. I've searched a lot and found some suggestions like: Overide the getAuthnRequest method in WebSSOProfileImpl .java so that the authnRequest sent to IdP has this attribute set. But I dont have any

问题 I am trying to implement SAML 2.0 is my application, by using my app as a service provider and WSO2 server as an idp. I have downloaded and implemented the spring-security-saml2-sample application and I have modified it to work with WSO2 server as idp and the sample application works as expected. I am now trying to incorporate securityContext.xml and the related configurations into my application, however I am getting an exception during metadata generation. The exception is as follows: java

问题 So here is the scenario. I have my web app <==> IDP Proxy <==> IDP. Where both IDP proxy and IDP are openam instances. The ideas is we may add our additional IDPs (From other clients) so we want a proxy to shield the complexity. So here IDP Prxy is : http://idpproxydev.devs1.int:8080/openam IDP url is: http://idpdev.devs1.int:80/openam My web app is : http://ocr-jq0zt91.devs1.int:9081/LOS I started using http://static.springsource.org/spring-security/site/extensions/saml/index.html for

问题 I've implemented a spring saml metadata provider that reads from a database and serves up both my service providers and identity providers. I'm also leveraging aliases to act as tenant identifiers. My problem is if I go into the database and modify the metadata for a particular identity provider to be different, it doesn't seem to have any effect until I restart the spring saml extension. This is independent of whether I wait for the MetadataManager reload thread to kick off. What's being

问题 All, Here is my requirement. We have a current JAVA Web application and that is implemented basic security on Spring Security Framework. When user come to our app , we own the login page, we store the user credentials and spring framework is calling our customer user provider to get all the user details. Now, we have a need to talk to another web application hosted in different domain. But the new application is SAML compliant and is ready to authenticate users based on SAML tokens. Based on

问题 I have refered the Spring SAML manual to create private key and import public certificate. But I am still facing issues with the encryption/decryption. I have created a JKS file with the following commands as mentioned in the manual which are as follows Command used to Import public certificate of IDP keytool -importcert -alias adfssigning -keystore samlKeystore.jks -file testIdp.cer Command used for Private Key keytool -genkeypair -alias myprivatealias -keypass changeit -keystore

问题 I am trying to use Grails Spring Security Saml Plugin in grails app to have single sign on functionality, I have tried hard to find any example which have explanation of the steps I need to do for adding this plugin and then testing this in my local environment using mock IDP and SP but haven't found anything beside the Grails Spring Security Saml Plugin Documentation which only helps in adding the plugin in the app and configuring its different properties. Can anyone suggest the steps how I

问题 I'm working on an java-based web application, implementing SSO using Spring Security SAML on a Tomcat server. This application would play the service provider role (SP). The default Spring URL to retrieve this SP's metadata is: https://www.server.com:8080/context/saml/metadata This works just fine, returning the metadata XML file as expected. However, I run into a problem when I add a DefaultServlet servlet-mappings to the web.xml. Even just something as basic as: <servlet-mapping> <servlet

问题 I have several AngularJS apps all using Spring/Java and SAML 2.0 for SSO (leveraging the Spring Security SAML extension). My SSO id provider is OpenAM and everything is working pretty well. However, I am running into a situation when a user does a global logout from within one application but has other tabs open. Since these are single page web apps, a lot of functionality may still be usable in the orphaned tabs UNTIL, the user does something to invoke an ajax request. Of course, these AJAX