Possible improvement: If saml2.idp.id is blank, try getting it from the metadata. I don't know about all other IdPs, but atleast with Microsoft ADFS the IdP id is part of the <EntityDescriptor> tag.
Example: <EntityDescriptor ID="_66183bea-76b8-4838-9579-6d17a2357d3d" entityID=" http://ppfs.infostorm.no/adfs/services/trust" xmlns="urn:oasis:names:tc:SAML:2.0:metadata"> saml2.idp.id in this case is: http://ppfs.infostorm.no/adfs/services/trust -- Erik On Tue, May 12, 2015 at 6:01 PM, Rohit Yadav <rohit.ya...@shapeblue.com> wrote: > Hi all, > > Based on the feedback several friends in the community on different > use-cases of using a federated login system based on SAML2 with CloudStack, > I’m soon planning to address them in the SAML plugin implement focusing on > pain points around interoperability, IdP support, security and ease of use. > > I’ve updated the specification to reflect some of those aspects I’ve > gathered in last few months: > > https://cwiki.apache.org/confluence/display/CLOUDSTACK/SAML+2.0+Plugin#SAML2.0Plugin-Version2:InProgress > > Please advise improvements you would like to see, or share pain points > with the current implementation. Thanks. > > Regards, > Rohit Yadav > Software Architect, ShapeBlue > M. +91 88 262 30892 | rohit.ya...@shapeblue.com > Blog: bhaisaab.org | Twitter: @_bhaisaab > > > > Find out more about ShapeBlue and our range of CloudStack related services > > IaaS Cloud Design & Build< > http://shapeblue.com/iaas-cloud-design-and-build//> > CSForge – rapid IaaS deployment framework<http://shapeblue.com/csforge/> > CloudStack Consulting<http://shapeblue.com/cloudstack-consultancy/> > CloudStack Software Engineering< > http://shapeblue.com/cloudstack-software-engineering/> > CloudStack Infrastructure Support< > http://shapeblue.com/cloudstack-infrastructure-support/> > CloudStack Bootcamp Training Courses< > http://shapeblue.com/cloudstack-training/> > > This email and any attachments to it may be confidential and are intended > solely for the use of the individual to whom it is addressed. Any views or > opinions expressed are solely those of the author and do not necessarily > represent those of Shape Blue Ltd or related companies. If you are not the > intended recipient of this email, you must neither take any action based > upon its contents, nor copy or show it to anyone. Please contact the sender > if you believe you have received this email in error. Shape Blue Ltd is a > company incorporated in England & Wales. ShapeBlue Services India LLP is a > company incorporated in India and is operated under license from Shape Blue > Ltd. Shape Blue Brasil Consultoria Ltda is a company incorporated in Brasil > and is operated under license from Shape Blue Ltd. ShapeBlue SA Pty Ltd is > a company registered by The Republic of South Africa and is traded under > license from Shape Blue Ltd. ShapeBlue is a registered trademark. >