You cannot post messages because only members can post, and you are not currently a member.
Description:
A mailinglist for the simpleSAMLphp project.
|
|
|
Configuring multiple sub-domains in single SP
|
| |
Hi Olav,
I'm implementing SAML for multiple sub-domains using single SP, I have
several hundereds of sub-domains which needs to be authenticated
through SAML IdP.
Is there a way I can use wildcard entry like *.englishcafe.com so that
I can use single metadat for SP in IdP?
I'm referring this URL:... more »
|
|
|
Active Directory memberOf converted to groups attribute
|
| |
Hello,
My simpleSAMLPHP install is working great. Our users can login, and
the appropriate AD data (username, email, first/last name) are passed
to the SP's based on each of their settings.
What I want to know is if we can leverage authproc and
core:AttributeAdd to add groups based on the memberOf attribute from... more »
|
|
|
redirect.validation for Shibboleth SP
|
| |
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Hi all, this might not be the /right/ place, but it might be possible that someone in this group has encountered this issue. I have to include a Shibboleth 2.4.3 SP in our Confia federation, that requires redirect validation (we also require assertion signing and... more »
|
|
|
Unable to find the current binding
|
| |
I am getting the "Unable to find the current binding" error message
from my customers IdP. I have a test IdP built using Microsoft WIF
and I do not get this error.
I put some debugging code in the getCurrentBinding() function in
Binding.php so I could see what they are passing over in the POST.... more »
|
|
|
misinterpretation of cacheDuration field by Metadata SAMLParser
|
| |
Hi, I'm having trouble with SimpleSAMLphp expiring IdP's before their stated expiretime is reached. As far I I can tell, this stems from SimpleSAML_Metadata_SAMLParser ::getExpireTime() misinterpreting the cacheDuration field in SAML metadata. We're running into the problem with a Scandinavian federation. Their... more »
|
|
|
Using the same SP for multiple hostnames
|
| |
I have set up simplesamlphp as an alias in my httpd.conf file for
host1.domain.com, so I am able to use the sample code in the
documentation successfully:
require_once('../../lib/_autol oad.php');
$as = new SimpleSAML_Auth_Simple('defaul t-sp');
$as->requireAuth();
$attributes = $as->getAttributes();... more »
|
|
|
Simple Question regarding retrieving sent Post data by SP through IDP
|
| |
Hello everybody,
i am a real beginner with simplesamlphp and so i have my first
question:
I set up an IDP and SP locally on two different local hosts.
Currently i playing with the example verysimple.php in the "www/
example-simple" folder.
My Question:
I added to this example a HTML select field with two different values... more »
|
|
|
requested AuthnContextClassRef from SP is ignored?
|
| |
(v 1.8.0)
I'm dealing with a SP who requests that AuthnContextClassRef is set to
"urn:oasis:names:tc:SAML:2.0:a c:classes:PasswordProtectedTra nsport",
instead of the default that we are passing.
Indeed, using the Firefox SAML tracer plugin, or by dumping
SAML2_AuthnRequest, it looks like the SP is requesting "unspecified"... more »
|
|
|
A problem with attributes NameFormat
|
| |
Hi,
I am Marco Malavolti, I'm an italian boy and I'm trying to use your
fantastic simplesamlphp. It's a beautiful software!
I have a problem...
I have configured the SSP as a SP that receive saml assertions from a
Shibboleth 2.x IdP.
Its assertions are:
<saml2:Attribute FriendlyName="uid" Name="urn:oid:... more »
|
|
|
iOS forgets cookies
|
| |
Hello On iOS (iPod, iPhone, iPad), the built-in browser tend to easily lose cookies. This is a pain for users since they often have to reauthenticate at the IdP. With simpleSAMLphp 1.4, I hacked a mix of Javascript & PHP to save the session cookie in HTML5 local storage after login, and to attempt restoring it when there is no session cookie available. At that time it... more »
|
|
|
