New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Create UI to configure IDP Initiated SAML Authentication #389

Open
nynymike opened this Issue Nov 11, 2016 · 2 comments

Comments

Projects
None yet
8 participants
@nynymike
Contributor

nynymike commented Nov 11, 2016

Many customers are using IDP initiated authentication extensively. It would be way better if we had some way to simplify this configuration through oxTrust.

Also, see this page about shibboleth support:
https://wiki.shibboleth.net/confluence/display/SHIB2/IdPUnsolicitedSSO

@nynymike nynymike added this to the CE 3.1.0 milestone Nov 11, 2016

@willow9886 willow9886 assigned yurem and unassigned uboznikov Feb 15, 2017

@nynymike nynymike assigned dmogn and unassigned yurem Apr 8, 2017

@nynymike nynymike modified the milestones: CE 3.2.0, CE 3.1.0 Apr 8, 2017

@nynymike nynymike assigned rajnikantsh and unassigned dmogn Sep 8, 2017

@GluuFederation GluuFederation deleted a comment from rajnikantsh Feb 20, 2018

@yurem yurem modified the milestones: 3.2.0, 3.1.4 Mar 22, 2018

@dmogn dmogn removed their assignment Apr 9, 2018

@syntrydy syntrydy self-assigned this Jun 28, 2018

@willow9886

This comment has been minimized.

Contributor

willow9886 commented Jun 28, 2018

BTW, we should architect a solution that simplifies this process irrespective of protocol..i.e. its not just an hassle with inbound SAML, the issue applies to any inbound identity workflow.

@syntrydy syntrydy modified the milestones: 3.1.4, 4.0 Aug 16, 2018

@dnorthup-ums

This comment has been minimized.

dnorthup-ums commented Oct 23, 2018

@willow9886 IdP-Initiated (Unsolicited) SSO has nothing to do with in-bound authentication flows. The nasty thing about it, in fact, is that there is no initial conversation with the SP before the user gets to the IdP. Frequently the vendors that insist upon using it also fail to supply metadata and expect the IdP maintainer to just guess and make metadata out of thin air. So, in more ways than one, nothing much inbound at all.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment