Details

    • Type: New Feature New Feature
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.0.0 RC1
    • Component/s: Core
    • Labels:
      None

      Description

      Currently there is no out-of-box support for SAML 2.0 tokens within Spring Security.
      It is desirable to enhance Spring Security to allow support for SAML 2 Tokens as described in
      SAML Token Profile 1.1 of OASIS WSS <http://www.oasis-open.org/committees/download.php/16768/wss-v1.1-spec-os-SAMLTokenProfile.pdf>.
      The solution should provide a Acegi Security plugin for SAML 2 compliant Authentication Authority.

      There appears to be people out there that have developed extensions to Spring Security to support SAML 2 and are looking for a way
      to contribute it to the project:

      <http://forum.springframework.org/showthread.php?t=46167>

      Perhaps such work from community members may be relevant and help get a solid start on meeting this RFE.

        Activity

        Hide
        Vladimir Schäfer added a comment -

        Please check the https://jira.springsource.org/secure/ReleaseNote.jspa?projectId=10350&version=11432 for all changes done to the original version attached to this issue. The module was migrated to Spring Security 3.0 already last year (revision 65). If you have any improvement ideas please open a new issue in Jira or contact me directly.

        Show
        Vladimir Schäfer added a comment - Please check the https://jira.springsource.org/secure/ReleaseNote.jspa?projectId=10350&version=11432 for all changes done to the original version attached to this issue. The module was migrated to Spring Security 3.0 already last year (revision 65). If you have any improvement ideas please open a new issue in Jira or contact me directly.
        Hide
        Janet Moyer added a comment -

        Are there plans to integrate the SAML extension into the base Spring Security?

        Show
        Janet Moyer added a comment - Are there plans to integrate the SAML extension into the base Spring Security?
        Hide
        Bill Siemen added a comment -

        I have upgraded this SAML extension from Spring Security 3.0.7 based to 3.1.0 based. But the sample module's index.jsp can't acquire the credential after logged in successfully. The code on index.jsp is:

        Line 15: SAMLCredential credential = (SAMLCredential) SecurityContextHolder.getContext().getAuthentication().getCredentials();

        The credential is always null.

        Any idea?

        Show
        Bill Siemen added a comment - I have upgraded this SAML extension from Spring Security 3.0.7 based to 3.1.0 based. But the sample module's index.jsp can't acquire the credential after logged in successfully. The code on index.jsp is: Line 15: SAMLCredential credential = (SAMLCredential) SecurityContextHolder.getContext().getAuthentication().getCredentials(); The credential is always null. Any idea?
        Hide
        Vladimir Schäfer added a comment -

        For the lastest version of the project please check https://github.com/SpringSource/spring-security-saml
        Or directly download master branch with "git clone git://github.com/SpringSource/spring-security-saml.git"

        Show
        Vladimir Schäfer added a comment - For the lastest version of the project please check https://github.com/SpringSource/spring-security-saml Or directly download master branch with "git clone git://github.com/SpringSource/spring-security-saml.git"
        Hide
        sahil chawla added a comment -

        Hi all ,

        I am in a great problem . I am able to pass the SAML token to my service provider but the output comes like -

        Username: iTXNxpkua+1IM1fWX4xczVzhnUyO
        User format: urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
        IDP: http://localhost:8080/openam_953
        Assertion issue time: 2012-01-17T15:21:05.000Z

        Not able to get the username in the context .
        Please help.

        Show
        sahil chawla added a comment - Hi all , I am in a great problem . I am able to pass the SAML token to my service provider but the output comes like - Username: iTXNxpkua+1IM1fWX4xczVzhnUyO User format: urn:oasis:names:tc:SAML:2.0:nameid-format:persistent IDP: http://localhost:8080/openam_953 Assertion issue time: 2012-01-17T15:21:05.000Z Not able to get the username in the context . Please help.

          People

          • Assignee:
            Luke Taylor
            Reporter:
            Farrukh Najmi
          • Votes:
            16 Vote for this issue
            Watchers:
            20 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: