Questions tagged [opensaml]
OpenSAML is a java and c++ library that provides low level handling of SAML messages
opensaml
383
questions
0
votes
0
answers
21
views
OpenSAML AuthnRequest signing doesn't work
I am working with openSAML in java, against Azure Entra SSO. My configuration works perfectly, however I now need to require the requests being signed.
I uploaded a certificate to Entra, as a .cer ...
0
votes
0
answers
25
views
SpringBoot 3.X Upgrade: Saml2 Redirection to Custom URL not working - Always redirects to <hostname>/saml2/authenticate/<registrationId>
While upgrading the springboot project from 2.X to 3.X, I had to update the SecurityConfig class as we no longer have WebSecurityConfigurerAdapter
I had configured SecurityFilterChain
public class ...
0
votes
0
answers
26
views
Login with external IdP inside a Java Application and do a succesful SSO
i need to integrate SAML authentication with an external IdP for SSO in a Java application.
I can authenticate in two ways: or with X509 certificate or with username and password.
How can i do that in ...
0
votes
0
answers
94
views
Spring Boot 3 SAML2 how to set maxAuthenticationAge
We have a legacy spring application which we've successfully moved to spring boot 3 using opensaml.
Here's a look at the dependencies:
dependencies {
constraints {
implementation "org....
0
votes
0
answers
137
views
Spring 6 Migration Breaking SAML2 InResponseTo Validation for multiple request for same session
We are migrating Spring from 5.6.x to 6.2.x. We have SSO authentication and we use SAML2. What we noticed in production, few sessions were getting 401 and logs said "Failed to match ...
1
vote
0
answers
30
views
Soap 1.2 Response envelope using open saml
I am trying to provide SSO support with WS-Trust protocol and the target application requires SOAP 1.2 and Opensaml SOAP builder seems to have only SOAP 1.1 , is there any alternatives to built SOAP1....
0
votes
1
answer
94
views
Do line breaks or spaces affect saml assertion validation?
I am developing an idp server. I am working on a project that interprets samlrequest from sp, creates samlresponse and sends it to sp.
The response itself has been completed, but I am constantly ...
0
votes
0
answers
38
views
Ws-Fed Response using open saml
I am trying to build ws-fed protocol response using org.opensaml.ws.wsfed. RequestSecurityTokenResponse here i added the RequestedSecurityToken with saml assertions in it.
When trying to add wst:...
0
votes
0
answers
38
views
OpenSAML Object Signing with HSM based cert and key
I am working on a gateway product where we are authenticating users with SAML SSO. Currently we are signing the SAML authN request before posting to IDP with a self signed certificate created locally ...
1
vote
0
answers
58
views
Padding not supported: OAEPPadding
I'm attempting to create a functionality that reads certificates from the Windows store. My setup involves an SSO-SAML enabled environment with ADFS as the identity provider (IdP). I've enabled ...
1
vote
1
answer
128
views
Is there a known workaround to make Spring Security 6 SAML usage FIPS-compliant?
Spring Security 6 uses OpenSAML 4.1.1 which has a dependency on the standard (non-FIPS) distribution of BouncyCastle.
Has anyone devised a workaround to make Spring Security 6 FIPS-compliant? I haven'...
0
votes
0
answers
236
views
Is it possible to have multiple SAML response url in one SAML SP metadata?
I am really new to SAML, but did read through tutorials (at least really tried). I am using samltest.id as IDP and my code will act like SP.
On my local machine, it works as far as I can see(samltest'...
0
votes
1
answer
183
views
Unable to compute signature, Signature XMLObject does not have the XMLSignature created during marshalling,
I am not able to generate SAMLResponse, receiving errors; "Unable to compute signature, Signature XMLObject does not have the XMLSignature created during marshalling", "XMLObject does ...
0
votes
0
answers
70
views
Send the attributes received from SAML assertion to a different application
I created a spring boot app with SAML2.0 integration with Okta as the IDP. Am able to successfully authenticate using okta and am getting back the required attributes from SAML assertion. Am using SP ...
0
votes
0
answers
61
views
why ProtocolSocketFactory not present in httpclient5?
I am trying to upgrade httpclient to httpclient5 distribution. But openSAML refers to ProtocolSocketFactory which is not present in httpclient5 version.
I am using OpenSAML 2.6.6
Please let me know if ...