On 17.03.2021 17:49, Christopher Schultz wrote:
André,
On 3/16/21 18:21, André Warnier (tomcat/perl) wrote:
Alternatively, see this :
https://wiki.shibboleth.net/confluence/display/SP3/JavaHowTo
Thanks for mentioning this. I looked at Shibboleth.
Their web site says "version 3 is
Luis,
On 3/17/21 09:39, Luis Rodríguez Fernández wrote:
Hello Chris,
- Manually create DOM: agree with you, I would not go in that direction. I
did it years ago when I developed a logout servlet for weblogic. You can
have a look at the code here [1] and feel my pain :)
- Library: I remember
André,
On 3/16/21 18:21, André Warnier (tomcat/perl) wrote:
Alternatively, see this :
https://wiki.shibboleth.net/confluence/display/SP3/JavaHowTo
Thanks for mentioning this. I looked at Shibboleth.
Their web site says "version 3 is deprecated" and "version 4 is
undocumented".
:(
That's
Hello Chris,
- Manually create DOM: agree with you, I would not go in that direction. I
did it years ago when I developed a logout servlet for weblogic. You can
have a look at the code here [1] and feel my pain :)
- Library: I remember testing opensaml [2], it was the most popular at that
time
Alternatively, see this :
https://wiki.shibboleth.net/confluence/display/SP3/JavaHowTo
On 16.03.2021 21:18, Christopher Schultz wrote:
Robert,
On 3/16/21 14:33, Robert Turner wrote:
Chris,
I'm not sure if it will do what you want, but when sourcing Java-based SAML
libraries for our use as
Yes, that's the one. It's not tied to the OneLogin service or any other. We
are successfully using it against Google Workspace SAML authentication, and
against test servers running KeyCloak, and hoping to use it against
Microsoft Azure as well (but I haven't confirmed that it definitely works
Robert,
On 3/16/21 14:33, Robert Turner wrote:
Chris,
I'm not sure if it will do what you want, but when sourcing Java-based SAML
libraries for our use as an SP, I too found that most of the libraries were
much larger and more complicated that I thought necessary. We went with the
(limited but
Chris,
I'm not sure if it will do what you want, but when sourcing Java-based SAML
libraries for our use as an SP, I too found that most of the libraries were
much larger and more complicated that I thought necessary. We went with the
(limited but simple to use) OneLogin libraries for our use
All,
I've got a system which is accepting one-legged, signed SAML responses
from trusted third parties and going all the right things. It's working
great.
It's time to look at doing the opposite: assembling our own SAML
responses, signing them, and sending them to another party.
I'm sure
