[keycloak-dev] Accessing SAML Request attributes in Authenticaors
Muein Muzamil
shmuein+keycloak-dev at gmail.com
Fri Sep 9 16:20:33 EDT 2016
Hi all,
We are trying to integrate with an SP which sends Subject/NameID in the
Saml Request (copying example below). I have couple of questions in this
regard
1. In our custom authenticator, we want to access this NameId and want
to pre-fill username field based on this. Can you please guide me how can I
do that.
2. Secondly, I am currently using KeyCloak JBoss Adapter for my sample
SP, does the SAML Adapter supports sending nameId in SAML request?
<samlp:AuthnRequest Destination="https://idp.com/
idp/profile/SAML2/Redirect/SSO" Version="2.0" IssueInstant="2016-02-24T15:
45:55.325Z"
ID="ID112bf5b0e4169930b663f2d89e62c521fc2f1b8133598fa2ff"
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
<saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://
pingone.com/xxx/640d3755-e080-4a87-8f7f-91795e78c08d</saml:Issuer>
<saml:Subject xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">
<saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">
jdoe at mysecureauthentication.com</saml:NameID>
</saml:Subject>
</samlp:AuthnRequest>
Regards,
Muein
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160909/ef34ab3c/attachment.html
More information about the keycloak-dev
mailing list