The SAML XML.org web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.
Using SAML
SAML Meta data
Am new to SAML.
Can any one tell me what is the use of SAML Meta data?
what is the use of it..
Attribute Query and bindings
Hi,
i want to setup an idp which delivers attributes for a subject. So the obvious way would be to implement the 'Assertion Query and Request Protocol'. If i understand the saml-core-2.0-os right this has to be done with the SAML-SOAP-Binding. But i really wish this could be done with the redirect binding which is much easier to integrate into arbitrary service providers.
So here are the questions:
- am i right that the "Assertion Query and Request Protocol" MUST use the SAML SOAP Binding?
Extension to RequestAbstractType
Hello there!
I am currently working on my Master thesis, where I am editing a SAML 2.0 implementation (simpleSAMLphp, but it's not relevant to the question, I think) and making an extension. To achieve my goals, I need to pass an Assertion containing an Authn Statement from one IdP (where the user authenticated himself) to another. I think the way to do this is using the defined "Extensions" field from "RequestAbstractType".
SecurityDomain attribute on NameIdentifier tag in SAML 1.1
Hi All,
Looking through SAML 1.1 samples in the Internet I found that many of them use SecurityDomain attribute on NameIdentifier tag to specify URL of security domain. But this attribute is missing in SAML 1.1 XSD (probably I cannot find it ?).
...
<saml:Subject>
<saml:NameIdentifier Name="ED.TIM" SecurityDomain="nchelp.org/meteor" />
</saml:Subject>
idle timeout?
Hi!
Is logout due to idle timeout a part of SAML. I read the specs, and it only says that single logout can be initiated due to timeout, but how would that really work? Wouldn't the IdP have to ask every SP if they agree to logout the user due to timeout?