How can i pass additional attributes in a SAML authentication request from SP to IdP using Shibboleth?
Kilian Ries
mail at kilian-ries.de
Fri Apr 27 20:52:08 BST 2012
Thanks for your quick answer.
If i configure an Extensions element, is there any way to put in external
Data, like from a HTML FORM ? I have a Java-Application, which needs to
send a String/Data with the AuthnRequest from the SP to the IdP. I don't
know how to get the Data attached to the AuthnRequest.
Do you have any Idea?
Am 27.04.12 20:09 schrieb "Cantor, Scott" unter <cantor.2 at osu.edu>:
>On 4/27/12 1:08 PM, "Kilian Ries" <mail at kilian-ries.de> wrote:
>>Hi,
>>>From this article
>>http://stackoverflow.com/questions/529655/are-attributes-allowed-in-a-sam
>>l
>>-authentication-request
>>i know attributes are possible in a SAML authentication request from an
>>SP.
>
>Well, as an Extension, yes. Nothing supports that, so I wouldn't advise
>it, but if you control both ends and you really want to do it, then I
>guess you could.
>
>>I think i've to modify the < SessionInitiator > from my Shibboleth SP and
>>add there an < samlp:AuthnRequest > child element.
>>Now the question is, how to get there additional attributes in?
>
>You have to put any content you want into the Request that the SP doesn't
>explicitly support. It won't touch AuthnRequest child elements that aren't
>material to its own options, so any Extensions element included, along
>with any content inside it, should be included and sent along to the IdP.
>
>-- Scott
>
>--
>To unsubscribe from this list send an email to
>users-unsubscribe at shibboleth.net
>
>
>
More information about the users
mailing list