The SAML web site is not longer accepting new posts. Information on this page is preserved for legacy purposes only. For current information on SAML, please see the OASIS Security Services Technical Committee Wiki.

Welcome to SAML

This is the official community gathering place and information resource for the SAML OASIS Standard. SAML provides an XML-based framework for creating and exchanging security information between online partners. This is a community-driven site, and the public is encouraged to contribute content.

How to create SAML2XMLObject

I am using standard SAML2.0 Authentication engine for authentication purpose. I am able to access the JAVA objects using script attribute from SAML. But I need to send the XML objects as additional attributes in SAML response ( in assertion ). For this I am trying to hard code as below. If this works I can extend this to JAVA objects.

Read more


I connect with a saml message to a portal. When i try make logout with other saml message, the portal send me one error in your saml response.



<Status> <StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester"> <StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:RequestDenied" /> </StatusCode> <StatusMessage>urn:oasis:names:tc:SAML:2.0:status:RequestDenied (urn:oasis:names:tc:SAML:2.0:status:InvalidAttrNameOrValue)</StatusMessage> </Status>


Read more


In-Webo (, strong authentication as a service (SaaS). Very simply, In-Webo has made a pure bulletproof software implementation of the OTP mechanism.

Read more

Can i create a session in SP from IDP?

I have an arquitecture with two SPs and an unique IDP. My question is if SAML provides some way to create a session in an SP from IDP when the other SP creates an session. Sorry for my english, if some part doesn't understand correctly i try to explain me better.

SP certificate - per app or per app-instance

Hi all,

I have a SAML SP app implemented with simpleSamlPHP (

the application can be used by multiple independent organizations (think of a CMS as example).

in order to be able to support some Shibboleth IdPs requirements I have to have my application encrypt its SAML assertions, so I need to work with certificate and provide the IdP with my certificate.


my question is:

Read more Focus Areas: BPEL | DITA | ebXML | IDtrust | OpenDocument | SAML | UBL | UDDI
OASIS sites: OASIS | Cover Pages | | AMQP | CGM Open | eGov | Emergency | IDtrust | LegalXML | Open CSA | OSLC | WS-I