Static localhost address
I ran the example 'spring-security-saml2-sample.war' successfully, but now I have a problem with redirection address of 302 Response of HTTP (Location header) for discovery - it is always set to...
View ArticleIssue With Deploying The SAML Example War File
Hi All, I am trying the deploy the Spring Security SAML example from the GITHub in Weblogic 12.1 version. After the deployment when I am trying to access the SP module by using the following URL then I...
View ArticleUsing SAML for stateless REST services
Hello, I am looking into using spring-security-saml for securing a system built up of stateless REST services spread out over several web contexts (potentially also several servers). Is it possible to...
View ArticleRelease schedule?
Hi, I have now successully built a prototype on IdP initiated SSO using Spring Security SAML extension and integrated it into our sales Application :cool:. We are now in a phase where we are planning...
View ArticleSecurityContext null in index.jsp because SecurityContextHolder cleared too...
I have a spring-security-saml2 based SP webapp that uses Shibboleth 2 IdP. Web SSO is successful. I am now working on a custom index.jsp and finding that within the index.jsp I am getting a null...
View Article401 - Authentication Failed: Error validating SAML message
I'm having a recurring issue with SAML authentication failing. We've had this bug before but mysteriously it went away and only comes back after we update code and redeploy. I have tried the ntp sync,...
View Articledoes the spring security saml 1.0.0.RC2 not support WAYF/SAMLDS
i used shibboleth ds, https://ds01/discoveryService/metadata.xml the metadata.xml contain one idp and many sp EntityDescriptor. there's not place to configure the ds service...
View ArticleClik here to view.
Logout - Incoming SAML message is invalid
Hi all, I have problem with logout functionallity. My app sends logout request to IDp: Code: <saml2p:LogoutRequest xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"...
View ArticleSAML authentication via a batch process
I have a batch process written in java, that access multiple web services during its execution. Some of these services are soap based and other are REST based. My requirement is that when batch process...
View ArticleLogout (between several application)
Hi all, I would like implement logout workflow between several applications. It means when I click on logout link in my app and go to another app, the another app makes logout too. Currently It works...
View ArticleAuthnResponse - Authentication Failed: Incoming SAML message is invalid
Hi Guys, As a SP, I'm trying to integrate SAML with a partner who has IDP setup. We imported below IDP metadata and its x.509 public key into our keystore. Code: <?xml version="1.0"...
View ArticleConcurrentSessionFilter not working with SAML
Hi , I am using Spring Security SAML extension with ADFS to establish WS-Trust. I have successfully received the SAML2.0 response. I have included ConcurrentSessionControlStrategy and...
View ArticleMissing SAML request if not "apollo" certificate.
Hi folks, I got the Spring SAML sample running and I was able to make first steps to protect my own application. However, it only works with the "apollo" for the application. If I create my own...
View Articleindex.jsp without content
Hi, My spring saml sample is working fine in regards to authentication. At least i am getting this message on the console: - Authentication success. Updating SecurityContextHolder to contain:...
View Article