[jira] [Resolved] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread Colm O hEigeartaigh (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh resolved SYNCOPE-1202. -- Resolution: Fixed > Support IdP Initiated SAML SSO >

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149075#comment-16149075 ] ASF subversion and git services commented on SYNCOPE-1202: -- Commit

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149074#comment-16149074 ] ASF subversion and git services commented on SYNCOPE-1202: -- Commit

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149060#comment-16149060 ] ASF subversion and git services commented on SYNCOPE-1202: -- Commit

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149059#comment-16149059 ] ASF subversion and git services commented on SYNCOPE-1202: -- Commit

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread Colm O hEigeartaigh (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149035#comment-16149035 ] Colm O hEigeartaigh commented on SYNCOPE-1202: -- You're right, not sure how I missed that

[jira] [Comment Edited] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread JIRA
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149022#comment-16149022 ] Francesco Chicchiriccò edited comment on SYNCOPE-1202 at 8/31/17 2:06 PM:

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread JIRA
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149022#comment-16149022 ] Francesco Chicchiriccò commented on SYNCOPE-1202: - Uh? Once metadata are upload, there

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread Colm O hEigeartaigh (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16149017#comment-16149017 ] Colm O hEigeartaigh commented on SYNCOPE-1202: -- We don't have UI support for the other

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread JIRA
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16148937#comment-16148937 ] Francesco Chicchiriccò commented on SYNCOPE-1202: - Forgot to mention: you should add the

[jira] [Commented] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread JIRA
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16148920#comment-16148920 ] Francesco Chicchiriccò commented on SYNCOPE-1202: - LGTM - I see some Java 8 stuff in the

[jira] [Updated] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread JIRA
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Francesco Chicchiriccò updated SYNCOPE-1202: Component/s: extensions > Support IdP Initiated SAML SSO >

[jira] [Updated] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread Colm O hEigeartaigh (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1202?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Colm O hEigeartaigh updated SYNCOPE-1202: - Attachment: SYNCOPE-1202.patch See attached for a patch for this issue. The IdP

[jira] [Created] (SYNCOPE-1202) Support IdP Initiated SAML SSO

2017-08-31 Thread Colm O hEigeartaigh (JIRA)
Colm O hEigeartaigh created SYNCOPE-1202: Summary: Support IdP Initiated SAML SSO Key: SYNCOPE-1202 URL: https://issues.apache.org/jira/browse/SYNCOPE-1202 Project: Syncope Issue

Re: SAML RelayState length

2017-08-31 Thread Francesco Chicchiriccò
On 31/08/2017 12:29, Colm O hEigeartaigh wrote: On Thu, Aug 31, 2017 at 11:22 AM, Francesco Chicchiriccò wrote: About checking the Relay State expiration, the duration is currently set to 5 seconds but I am afraid it is not curerntly verified during the response

Re: SAML RelayState length

2017-08-31 Thread Colm O hEigeartaigh
On Thu, Aug 31, 2017 at 11:22 AM, Francesco Chicchiriccò < ilgro...@apache.org> wrote: > > > About checking the Relay State expiration, the duration is currently set > to 5 seconds but I am afraid it is not curerntly verified during the > response validation. > 5 seconds seems a bit

Re: SAML RelayState length

2017-08-31 Thread Francesco Chicchiriccò
On 31/08/2017 11:33, Colm O hEigeartaigh wrote: On Thu, Aug 31, 2017 at 7:51 AM, Francesco Chicchiriccò wrote: Anyway, I see several SAML 2.0 implementations out there not enforcing the 80 chars limit: would removing all but the AuthnRequestID from the current JWT-based

Re: SAML RelayState length

2017-08-31 Thread Colm O hEigeartaigh
On Thu, Aug 31, 2017 at 7:51 AM, Francesco Chicchiriccò wrote: > > Anyway, I see several SAML 2.0 implementations out there not enforcing the > 80 chars limit: would removing all but the AuthnRequestID from the current > JWT-based Relay State be an acceptable compromise? >

Re: SAML RelayState length

2017-08-31 Thread Francesco Chicchiriccò
On 30/08/2017 19:01, Colm O hEigeartaigh wrote: Hi Francesco, On Thu, Aug 17, 2017 at 2:10 PM, Francesco Chicchiriccò wrote: Hi Colm, at the moment the relay state as signed JWT is used to hold [1]: * the preference to use the (non-standard?) deflate encoding - which

[jira] [Commented] (SYNCOPE-1198) Make the signature algorithm configurable for SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1198?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16148523#comment-16148523 ] ASF subversion and git services commented on SYNCOPE-1198: -- Commit

[jira] [Commented] (SYNCOPE-1198) Make the signature algorithm configurable for SAML SSO

2017-08-31 Thread ASF subversion and git services (JIRA)
[ https://issues.apache.org/jira/browse/SYNCOPE-1198?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16148522#comment-16148522 ] ASF subversion and git services commented on SYNCOPE-1198: -- Commit