Am new to SAML.

Can any one tell me what is the use of SAML Meta data?

what is the use of it..

Hi,

i want to setup an idp which delivers attributes for a subject. So the obvious way would be to implement the 'Assertion Query and Request Protocol'. If i understand the saml-core-2.0-os right this has to be done with the SAML-SOAP-Binding. But i really wish this could be done with the redirect binding which is much easier to integrate into arbitrary service providers.

So here are the questions:

- am i right  that the "Assertion Query and Request Protocol" MUST use the SAML SOAP Binding?

Read more

Hello there!

I am currently working on my Master thesis, where I am editing a SAML 2.0 implementation (simpleSAMLphp, but it's not relevant to the question, I think) and making an extension. To achieve my goals, I need to pass an Assertion containing an Authn Statement from one IdP (where the user authenticated himself) to another. I think the way to do this is using the defined "Extensions" field from "RequestAbstractType".

Read more

Hi All,

Looking through SAML 1.1 samples in the Internet I found that many of them use SecurityDomain attribute on NameIdentifier tag to specify URL of security domain. But this attribute is missing in SAML 1.1 XSD (probably I cannot find it ?).

...

<saml:Subject>

    <saml:NameIdentifier Name="ED.TIM" SecurityDomain="nchelp.org/meteor" />

</saml:Subject>

Read more

Hi!

Is logout due to idle timeout a part of SAML. I read the specs, and it only says that single logout can be initiated due to timeout, but how would that really work? Wouldn't the IdP have to ask every SP if they agree to logout the user due to timeout?