I suppose the request validation is done for the specified binding selected by the user. But we have seen situations where SP apps send us authentication requests in post binding with content deflating and redirect binding without deflating.
So if the authentication request mashelling failed for selected binding, it would be better to check with other binding too and show a "hint" if unmarshalling get successful with the other binding. On Wed, Apr 2, 2014 at 7:02 PM, Thanuja Jayasinghe <[email protected]> wrote: > Hi all, > > > I'm currently developing $subject which will ease the SAML2 configuration > process in IS. This toolkit consist of two parts, > > 1. > > SAML2 Request Validator > 2. > > SAML2 Response Builder > > > *SAML2 Request Validator* > > Using this component users can validate Service Provider(SP) initiated > SAML2 AuthnRequest. > > For the validation process following information are required, > > - > > SAML2 AuthnRequest - User needs to provide > - > > Request Binding - User needs to provide > - > > SAML2 Web SSO Configuration - As Issuer value comes with request, this > will be selected automatically > > After the validation results will be displayed as steps indicating request > has passed or failed that step. Then the user can adjust the configuration > accordingly. > > > > > > *SAML2 Response Builder* > > Using this component user can generate a SAML2 response for selected SAML2 > Web SSO configuration. To generate the response following information are > required, > > - > > SAML2 Web SSO Configuration - User need to provide > - > > User Name - User need to provide > > Using this information response builder will generate the response and > will be represented to the user in both XML and encoded string format. Then > user can use this encoded response to do the validations in SP side. > > > > > > > Thanks, > Thanuja. > > -- > *Thanuja Lakmal* > Software Engineer > WSO2 Inc. http://wso2.com/ > *lean.enterprise.middleware* > Mobile: +94715979891 > > _______________________________________________ > Architecture mailing list > [email protected] > https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture > > -- Regards, *Darshana Gunawardana *Software Engineer WSO2 Inc.; http://wso2.com * E-mail: [email protected] <[email protected]>* *Mobile: +94718566859 <%2B94718566859> *Lean . Enterprise . Middleware
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
