Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ProviderName attribute to outbound SAML authentication request messages #21536

Closed
jcgarciaa opened this issue Oct 29, 2024 · 0 comments
Closed

Add ProviderName attribute to outbound SAML authentication request messages #21536

jcgarciaa opened this issue Oct 29, 2024 · 0 comments
Assignees
@AmshikaH
Labels
Type/Improvement

Comments

@jcgarciaa
Copy link
Contributor

jcgarciaa commented Oct 29, 2024
edited
Loading

Is your suggestion related to an experience ? Please describe.

When a federated SAML IDP expects to receive the ProviderName attribute on the AuthnRequest message, the authentication fails due to the absence of this attribute.

Describe the improvement

Although, the SAML2 specification [1] defines the ProviderName attribute as optional, WSO2IS should be able to set this attribute (from the existent properties of the federated IDP -or a new one-) when building the authentication request message [2].

[1] https://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf
[2] https://github.com/wso2-extensions/identity-outbound-auth-samlsso/blob/master/components/org.wso2.carbon.identity.application.authenticator.samlsso/src/main/java/org/wso2/carbon/identity/application/authenticator/samlsso/manager/DefaultSAML2SSOManager.java#L740
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@AmshikaH AmshikaH

Labels
Type/Improvement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jcgarciaa @AmshikaH