Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ability to customize/configure SAML AuthnRequest (SP -> IDP) #8953

Closed
amergey opened this issue Aug 11, 2020 · 1 comment
Closed

Ability to customize/configure SAML AuthnRequest (SP -> IDP) #8953

amergey opened this issue Aug 11, 2020 · 1 comment
Assignees
@jzheaux
Labels
in: saml2 An issue in SAML2 modules status: duplicate A duplicate of another issue

Comments

@amergey
Copy link
Contributor

amergey commented Aug 11, 2020
edited
Loading

Expected Behavior

We should be able to customize/configure the way AuthnRequest is built by spring-security.
It was possible with spring saml extension (see 9.2.1 in https://docs.spring.io/spring-security-saml/docs/current/reference/html/configuration-sso.html)

Context

Some IDP mandates specific format for AuthnRequest and does not support everything. To increase interoperability between spring-security acting as a SP with multiple IDP vendors, it is necessary to provide similar way of configuring AuthnRequest (as it was possible in spring saml extension)
Compared to saml extension we identify specifically the need for
@amergey amergey added status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement labels Aug 11, 2020
@amergey amergey changed the title Ability to customize/configure AuthnRequest (SP -> IDP) Ability to customize/configure SAML AuthnRequest (SP -> IDP) Aug 11, 2020
@jzheaux jzheaux self-assigned this Aug 13, 2020
@jzheaux jzheaux added in: saml2 An issue in SAML2 modules status: duplicate A duplicate of another issue and removed status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement labels Aug 13, 2020
@jzheaux
Copy link
Contributor

jzheaux commented Aug 13, 2020

@amergey, thanks for the suggestion.

This support was added in 5.4-RC1 via the OpenSamlAuthenticationRequestFactory#setAuthnRequestConsumerResolver method. My apologies as the documentation for that feature didn't make it into RC1.

Since the code is in the RC1 phase, please try it out and send feedback (preferably on #8141) on whether it meets your needs.

@jzheaux jzheaux closed this as completed Aug 13, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jzheaux jzheaux

Labels
in: saml2 An issue in SAML2 modules status: duplicate A duplicate of another issue
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@amergey @jzheaux