[keycloak-user] Diagnosing SAMLv2 Identity Provider

Michael Poettgen Michael.Poettgen at oeconnection.com
Wed Jan 17 09:35:56 EST 2018 

Great suggestion. I didn’t realize that the communication is going via my browser. I would have thought that the response would be sent via some kind of a backchannel.

I can actually see the (base64 encoded) response in the network tab of my browser’s developer tools.

Thanks,
Michael

From: Drew Weirshousky [mailto:d.weirshousky at xsb.com]
Sent: Wednesday, January 17, 2018 2:49 PM
To: Michael Poettgen
Cc: keycloak-user
Subject: Re: [keycloak-user] Diagnosing SAMLv2 Identity Provider

Hi Michael,

You should be able to use a browser plugin or Fiddler to see the SAML requests being passed between the Identity Provider and Keycloak or your app.

Drew

----- Original Message -----
From: "Michael Poettgen" <Michael.Poettgen at oeconnection.com<mailto:Michael.Poettgen at oeconnection.com>>
To: "keycloak-user" <keycloak-user at lists.jboss.org<mailto:keycloak-user at lists.jboss.org>>
Sent: Wednesday, January 17, 2018 6:36:03 AM
Subject: [keycloak-user] Diagnosing SAMLv2 Identity Provider

I've got a 3.4.3 Keycloak server deployed in a Docker environment and I am having some trouble setting up attribute mapping for an external SAML v2 Identity Provider. I'm not sure what exactly the external Identity Provider is sending so I was wondering whether there is an easy way to diagnose the SAML assertions that we are getting from them. However I couldn't find any details in the Events section.

Thanks,
Michael


This message may contain confidential information. If you are not the intended recipient, do not disseminate, distribute, or copy this e-mail or its attachments. Please notify the sender of the error immediately by e-mail or at the telephone number listed below, and delete this e-mail and any attachments from your system. Receipt by anyone other than the intended recipient(s) is not a waiver of any trade secrets, proprietary interests, or other applicable rights. E-mail transmission is not necessarily secure or error-free, as information could be intercepted, corrupted, lost, destroyed, delayed, incomplete, or may contain viruses. The sender disclaims all liability for any errors or omissions arising as a result of the e-mail transmission.

OEConnection LLC, (888) 776-5792, www.oeconnection.com<https://protect-us.mimecast.com/s/udqbCo2m30IJJ14cVbm8A>

_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org<mailto:keycloak-user at lists.jboss.org>
https://lists.jboss.org/mailman/listinfo/keycloak-user<https://protect-us.mimecast.com/s/HqgxCpYn4qUPPJDtGohbv>

More information about the keycloak-user mailing list