[keycloak-dev] Accessing SAML Request attributes in Authenticaors

Muein Muzamil shmuein+keycloak-dev at gmail.com
Thu Sep 15 11:05:31 EDT 2016


Hi all,

Not sure if my question was clear enough, feel free to ask for
clarifications if needed.

I will really appreciate some response on this.

Best regards,
Muein

On Tue, Sep 13, 2016 at 10:29 AM, Muein Muzamil <
shmuein+keycloak-dev at gmail.com> wrote:

> Hi all,
>
> Any pointers to this? I was looking at the SAMLAuthNRequestParser class
> and it seems we are parsing the subject from the incoming request. Now the
> question is how can I access it in my custom authenticator?
>
> else if (JBossSAMLConstants.SUBJECT.get().equals(elementName)) {
>        authnRequest.setSubject(getSubject(xmlEventReader));
> }
>
> Regards,
> Muein
>
> On Fri, Sep 9, 2016 at 3:20 PM, Muein Muzamil <shmuein+keycloak-dev at gmail.
> com> wrote:
>
>> Hi all,
>>
>> We are trying to integrate with an SP which sends Subject/NameID in the
>> Saml Request (copying example below).  I have couple of questions in this
>> regard
>>
>>
>>    1. In our custom authenticator, we want to access this NameId and
>>    want to pre-fill username field based on this. Can you please guide me how
>>    can I do that.
>>    2. Secondly, I am currently using KeyCloak JBoss Adapter for my
>>    sample SP, does the SAML Adapter supports sending nameId in SAML request?
>>
>> <samlp:AuthnRequest Destination="https://idp.com/i
>> dp/profile/SAML2/Redirect/SSO" Version="2.0"
>> IssueInstant="2016-02-24T15:45:55.325Z"
>> ID="ID112bf5b0e4169930b663f2d89e62c521fc2f1b8133598fa2ff"
>> xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
>>
>> <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://pi
>> ngone.com/xxx/640d3755-e080-4a87-8f7f-91795e78c08d</saml:Issuer>
>> <saml:Subject xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">
>> <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecifie
>> d">jdoe at mysecureauthentication.com</saml:NameID>
>> </saml:Subject>
>> </samlp:AuthnRequest>
>>
>>
>> Regards,
>> Muein
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-dev/attachments/20160915/7e6a31c6/attachment-0001.html 


More information about the keycloak-dev mailing list