Questions tagged [spring-security-saml2]
104 questions
19
votes
1 answer
How to configure service provider with spring-security-saml2 to consume EncryptedAssertions?
I am using this excellent repo vdenotaris/spring-boot-security-saml-sample as a guide and I am trying to set it up to verify and decrypt incoming SAML messages that contain EncryptedAssertion.
The idP's metadata defines the signing and encrypting…
george_h
- 1,562
- 2
- 19
- 37
12
votes
1 answer
Spring SAML: Could not find artifacts while using as maven dependency with version 1.0.4.RELEASE
I am trying to use spring-security-saml2-core-1.0.4.RELEASE as maven dependency for my project and encounter two issues when mvn install:
Failure "Could not find artifact xml-apis:xml-apis:jar:1.4 ... ". I have not found 1.4 version of xml-apis…
Artur Yakubenko
- 129
- 1
- 1
- 8
8
votes
1 answer
Spring Security SAML2 dynamic selection of IDPs or dynamic URLs for them
We're trying to configure several identity providers in the application to support different types of SSO.
The problem is that for a non-authenticated request the application doesn't know which IDP to redirect to.
We can figure out which IDP to use…
ATrubka
- 3,982
- 5
- 33
- 52
7
votes
1 answer
Spring Security SAML Assertion to Roles conversion
I have been using SAML 2.0 with Spring Boot 2.5.6 using Okta as the Identity Provider. For the most part, I have been able to create a Web Application and integrate with Okta's Identity provider. The problem I am facing is related to roles. The…
Viraj Shetty
- 95
- 6
6
votes
2 answers
Select Identity Provider Locally with Spring Security's SAML 2.0
I'm using Spring Security's SAML 2.0 to connect my service provider to multiple identity providers.
Everything in Spring's SAML 2.0 documentation makes sense. I have read many helpful tutorials including this one, which are similar to my existing…
Matt Goodrich
- 4,875
- 5
- 25
- 38
6
votes
0 answers
upgrade from spring-security-saml2-core to Spring Security SAML2 service provider
We are using spring-security-saml2-core for SSO Okta Integration for the web application.
GitHub: https://github.com/spring-projects/spring-security-saml
This project is in maintenance mode and will each End-of-Life on 6 October 2021. Please use…
Madhusudana
- 302
- 3
- 12
5
votes
1 answer
Customizing OpenSaml4AuthenticationProvider in Spring Security SAML2
I need to use a legacy UserDetailsService with Spring Security SAML2, so I'm following these instructions from Spring. However, I get an error when I just try to replace the AuthenticationProvider with the supposedly "default" one according to that…
Tom Panning
- 4,613
- 2
- 26
- 47
5
votes
1 answer
How to include user details from a legacy UserDetailsService in OpenSaml4AuthenticationProvider?
I am hoping someone can give me a more concrete example than the one I found in the documentation.
Using SpringBoot/Spring Security 5.6.0. I am migrating the authentication process based on SpringSecurity/SAML to SAML2.
I need to add to the…
Danielf
- 76
- 3
5
votes
0 answers
Spring Security SAML behind reverse proxy
I have successfully integrated SSO/SAML2 on my local development platform with Spring Security SAML.
Now, i want to install it on our production environment behind a reverse-proxy.
Reverse proxy is configured as following…
Dezz
- 51
- 1
5
votes
1 answer
Keycloak and Spring SAML: SigAlg was null
I'm trying to setup POC using Spring Security, Spring Security SAML and Keycloak. For this, I'm using the simple-service-provider sample which is provided by the Spring SAML core project.
I managed to get the SAML setup working as long as Keycloak…
P_W999
- 1,017
- 12
- 26
4
votes
1 answer
How do you disable the auto generated pages /login and /logout using Spring SAML2?
I am using Spring Boot - 2.6.6 and Spring Security - 5.7.0-M2 with the spring-security-saml2-service-provider library to create a SAML service provider application. I followed Spring's sample project Spring Security SAML2 Sample so my setup looks…
mmoussa
- 43
- 5
4
votes
1 answer
Howto disable signature verification in Spring Security SAML 5.6.1?
I'm currently migrating from old deprecated Spring Security SAML Extension 1.0.10 to the SAML implementation in Spring Security 5.6.1.
In the old extension there was the possibility to disable the signature verification of the SAML response…
Mr. BoFrost
- 103
- 7
4
votes
1 answer
Unable to change default "reply Url" (assertion consumer service Location) in Spring security SAML SSO
I am using spring security Saml 2.0 with spring boot for SSO (Single sign on) with azure as Identity provider.
Spring security uses "{baseUrl}/login/saml2/sso/{registrationId}" as a default "Reply Url",
but I want to use…
Ketan Chaudhari
- 335
- 8
- 12
4
votes
1 answer
403 "Invalid CORS request" after a successfull SAML authentication
We are using spring security in our application (SP) to authenticate through a SAML IDP.
As expected accessing to the SP redirect to the IDP authentication form but after the successful authentication, POST of the SAML response to…
Arnaud MERGEY
- 76
- 7
4
votes
1 answer
spring-security saml2 : How to obtain the current user?
I'm working with spring-security and spring-security-saml2-service-provider with versions 5.2.0.RELEASE. I'm trying after authentication by IDP to obtain the current Assertion in order to map it to a user in our local system.
I use this code to…
drizzt.dourden
- 683
- 8
- 20