Stack Overflow
Stack Overflow

Questions tagged [saml]

Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.

Security Assertion Markup Language (SAML) is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).
SAML is a product of the OASIS Security Services Technical Committee.

Also see SAML2.0

3545 questions
179
votes
4 answers

What is the difference between OpenID and SAML?

What is the difference between OpenID and SAML?
metdos
  • 13,411
  • 17
  • 77
  • 120
126
votes
4 answers

SAML: Why is the certificate within the Signature?

I have to implement SSO with SAML for my company's website (as the relying party). An essential part off course is the verification of the signature. Here is the signature part of a sample SAML from our partner company (asserting…
Dante
  • 1,261
  • 2
  • 9
  • 3
103
votes
7 answers

SAML vs federated login with OAuth

What's the difference between SAML and federated login with OAuth? Which solution makes more sense, if a company wants to use a third-party webapp, and but also wants single sign-on and be the authentication authority?
Chung Wu
  • 2,357
  • 3
  • 21
  • 19
86
votes
4 answers

What is exactly RelayState parameter used in SSO (Ex. SAML)?

I am trying to understand SSO using SAML. I have come across the RelayState parameter and am very confused exactly why it comes first in SSO to send encoded URLs? What exactly does it mean? Please read the following from the Google Developer…
Oomph Fortuity
  • 5,710
  • 10
  • 44
  • 89
84
votes
2 answers

How To Become a SAML Service Provider

My company currently develops a Java web application. A couple of our clients have internal SAML servers (identity providers?) and have requested that we integrate with them. So recently I've been reading up on it and playing around with OpenAM.…
Staros
  • 3,232
  • 6
  • 30
  • 41
76
votes
4 answers

What are the different NameID format used for?

In SAML metadata file there are several NameID format defined, for…
performanceuser
  • 2,793
  • 5
  • 34
  • 44
70
votes
3 answers

What's the difference between ADFS, WIF, WS Federation, SAML, and STS?

These are numerous technologies and buzzwords used for single sign-on with Microsoft services. Can someone explain ADFS, WIF, WS Federation, SAML, and STS (Security token service), including where and when each is being used.
Tiffany Harry
  • 777
  • 1
  • 8
  • 10
67
votes
3 answers

Difference between JWT and SAML?

What are the main difference between JWT (Json Web Token) and SAML? Can you suggest me any examples of these with spring security?
Jamsheer
  • 3,673
  • 3
  • 29
  • 57
63
votes
2 answers

How to Load RSA Private Key From File

I am working on a test harness for a SAML 1.1 Assertion Consumer Service. The test must generate a signed SAMLResponse and submit it to the ACS encoded in Base64. The ACS must be able to verify the signed message using the X509 public cert. I am…
AJ.
  • 27,586
  • 18
  • 84
  • 94
63
votes
5 answers

CAS vs. SAML vs. OAuth2

Before you put me down for asking too basic a question without doing any homework, I'd like to say that I have been doing a lot of reading on these topics, but I'm still confused. My needs seem simple enough. At my company, we have a bunch of Ruby…
Anjan
  • 1,613
  • 1
  • 19
  • 25
57
votes
7 answers

Service providers with SAML version 2 for SSO accessible to public?

I'm wondering if there are any publicly available SAML version 2 SPs (Service Providers) that can be used to test SSO(Single Sign On) Salesforce and Google apps both have an SSO solution, but how to go get access to them and what is the cost for…
Joseph Weissman
  • 5,697
  • 5
  • 46
  • 75
57
votes
1 answer

How to create public and private key with openssl?

My questions are How to create a public key and private key with OpenSSL in windows? How to put the created public key in .crt file and the private one in .pcks8 file I want to use these two keys to sign a SAML assertion in Java. Thanks in…
Karim
  • 637
  • 1
  • 5
  • 13
45
votes
10 answers

How can I restrict client access to only one group of users in keycloak?

I have a client in keycloak for my awx(ansible tower) webpage. I need only the users from one specific keycloak group to be able to log in through this client. How can I forbid all other users(except from one particular group) from using this…
lukasell
  • 761
  • 1
  • 8
  • 10
41
votes
5 answers

What is the purpose of a SAML Artifact?

I've seen a bunch of flow chart on how it is passed around between Identity Provider (IdP), Service Provider (SP), and Browser via Redirects. However it seems unnecessary to me right now, so i know i'm missing something. Can someone provide me a…
funa68
  • 909
  • 3
  • 12
  • 21
40
votes
3 answers

How to implement SAML SSO

How is SAML SSO typically implemented? I've read this (n.b. obsolete) about using SAML with Google Apps, and the wikipedia entry on SAML. The wikipedia entry talks about responding with forms containing details of the SAMLRequest and SAMLResponse.…
A_M
  • 7,693
  • 6
  • 33
  • 37
1
2 3
99 100