As a Service Provider (SP) I have written a node.js service to processes SAML2.0 Assertions. I would now like to test this code. I am aware that I can use various cloud-based services to act as m...

I am using this excellent repo vdenotaris/spring-boot-security-saml-sample as a guide and I am trying to set it up to verify and decrypt incoming SAML messages that contain EncryptedAssertion. The ...

For three days, I have been pulling my hair out trying to wrap my head around Okta & SAML. On my local machine (OSX Mavericks), I am able to successfully follow the steps listed here: http://...

I'm thinking to develop a full-fledged Identity System in Laravel 5 with Passport. Following is my requirement: I should have main identity management app like identity.mysite.com where all of m...

I'd like to preface this by saying that until now, I hadn't even HEARD of SAML, much less developed a SSO strategy involving it. That, combined with the fact that I've barely been doing node for a ...

We have configured Keycloak as Identity Broker to external SAML2 based Identity Provider. For most of the users, we are able to sign in without any issues, but for some, we are facing issues at Key...

Our University has migrated to a SAML based authentication/authorization method using Shibboleth. I have been researching for at least a day on how to use SAML with .net core web applications. I c...

You might heard about shibboleth and their great solutions as for Identity Provider (https://shibboleth.net/products/identity-provider.html) so is for Service Provider (e.g. nginx https://github.co...

I'm getting the following error when trying to process a IdP-initiated SAML2 response using python-saml and flask: Signature validation failed. SAML Response rejected I'm following the example h...

I've implemented Passport-SAML into my site, and now I've been tasked with connecting our site with two other Identity Providers. In my code, it seems to use only the most recent definition of the ...

I'm working on a web application that needs to implement a SAML SSO using a third party idP (SP-initiated). I've reached the point where I am receiving the SAMLResponse from the idP which looks lik...

I have a use case where I have to create a web API for post request. In order to develop the post request first I need to fetch the service doc. At the time of service doc request I am able to fetc...

I am learning about SAML and already read many articles and forums but I still having confusion about setup IdP. I am using "https://simplesamlphp.org/" For example, I have 3 websites "example.com...

I was told that it is possible to give information about group membership during a SAML authentication request. We have to connect to an application that does use SAML (we are at the end that is cr...

As outlined in the Google docs you can use Google Apps as a SAML 2.0 IdP. The IdP metadata includes a URL for SSO, but doesn't contain a SLO URL: <?xml version="1.0" encoding="UTF-8" standalone...

We have created many SAML implementations in the past. Normally, the client would send us SAML XML data containing key info, user info, certificate , etc and we would parse the info, match key and ...

I know in SAML protocol, IDP and SP they hold their own key pair, and will not expose their private key to each other. I assume the realm key below is the IDP key pair, which make sense because pr...

We uses Azure AD for the SAML Authentication process. Azure is set up as the trust provider using the Federated Metadata that is published by Microsoft here: https://login.microsoftonline.com/commo...

I have been searching for quite long time, whether SAML Authentication available for Mobile Apps. I went through the oneLogin developer portal completely, but could not find any documents on Androi...

I understand that CAS and SAML are different protocols used for Single-sign on purposes but, what confuses me is articles that say "CAS has an SAML implementation". Aren't CAS and SAML different w...

I am using SSOCircle to test out my SAML implementation with Codeigniter. The current steps are: Access website.com Redirected to SSOCircle Consent Page Verify identity Pass user data back to web...

I am using identity server 4 for authentication to my ASP.Net Core solution. And it is working well with Facebook, Google and other external identity provider. And now I am trying to add SAML 2.0 a...

https://www.kb.cert.org/vuls/id/475445 has just been disclosed. Is this impacting Spring Security SAML2? I can't see the XML parser used on Spring Security SAML2 on the list of affected APIs. Le...

I'ld like to implement SSO using SAML 2.0 in my web applications. I have seen spring-security-saml and example of spring boot application. There are a couple of things I wanted to know after I went...

I have already implemented OAuth for ionic app using ADFS 4.0 as the service provider. Now, there are some internal web sites which are added as links inside the app which are registered via ADFS...