Issue I’ve been investigating SSO solution for SPAs for some time. There’re a lot of solutions with subtle difference, while I also found not really everyone has the same understanding of SSO and not many established pattern of SSO for
Continue readingTag: single-sign-on
Freshdesk OAuth SSO: Freshdesk Login Page Doesn't Ping My Auth Page?
Issue I’m trying to connect to Freshdesk using OAuth 2.0, for single sign-on from my app. My app is serving as it’s own OAuth identity provider. I’ve set up my Authorization url on Freshdesk — let’s call it https://www.myWebApp.com/auth: So
Continue readinginvalid_grant: AADSTS50126: Error validating credentials due to invalid username or password
Issue I am trying to hit a post request to https://login.microsoftonline.com/<My_Tenant_Id>/oauth2/token from my Java Code, but I am getting the error "invalid_grant: AADSTS50126: Error validating credentials due to invalid username or password". I have verified the credentials and they are
Continue readingimplement single sign on(saml2) in reactjs without express
Issue I want to implement SSO SAML2 with wso2 ei in React where I go to check if I am authenticated or not If not authenticated I should redirect to sso URL When I sign in successfully on sso identity
Continue readingCordova SAP Fiori Client – how to pass SSO Token to FLP URL
Issue We have enabled SAML to our FLP. I have SSO Token (available) when Android Cordova App (Fiori Client) is launched, trying to pass this token to Fiori Launchpad URL in SAP Fiori Client. I customized index.html like below but
Continue readingWordPress – SSO Login with LinkedIn
Issue I’m following the LinkedIn API details, I have the following on my HTML page: <script type=”in/Login”></script> I have included the LinkedIn details in the <head>: <script type=”text/javascript” src=”//platform.linkedin.com/in.js”> api_key:XXXXXXXXXX authorize:false lang:en_US </script> This displays the pop up and asks
Continue readingGetting Kerberos Token for SSO
Issue I am trying to get a Kerberos token for the current user logged into Windows to make a request to a REST service that accepts Kerberos authentication. I am using the following C code based on the solution to
Continue readingHow to let Nextcloud user login in django with single sign similar to "Login with Github" in SO?
Issue I have a Nextcloud instance where all potential users have an account. I would like to set up an Open Source Doodle (Bitpoll) that is django based, as I don’t like the nextcloud poll app. For security reasons I
Continue readingGlassfish 4.1 with Salesforce SSO over SAML
Issue I hope you’re doing well. I’m facing some issues migrating applications from Weblogic to Glassfish 4.1 and, I’m quite new with the Glassfish server. I will try to explain what I’m doing and what I’ve found so far on
Continue readingJWT in Laravel and Angular on many VPS
Issue I implemented JWT on the first VPS. On this server, I have controllers in Laravel and a database where users are stored. Now I want to add JWT on the second VPS. But JWT should get users from the
Continue readingPower BI to Snowflake via AAD SSO with MFA
Issue We’re trying to connect Power BI Desktop to our Snowflake instance using Azure Active Directory (AAD) Single Sign-on (SSO), and running into a snag. Our best guess at this time is that it’s because we use multifactor authentication (MFA)
Continue readingIP.Board – Single Sign On in php
Issue I’m developing a small hand made web portal for a community and I want it to have a loggin system with IP.Board (easier for the end user). I have the forum and the app on the same hosting. For
Continue readingI'm getting /pentaho/saml/SSO HTTP 404 Not Found when configuring SAML 2 SSO in Pentaho
Issue I’m trying to configure SAML 2 SSO in Pentaho 8.1 with WSO2 Identity 5.3.0 Server. I have followed theses guides: https://help.pentaho.com/Documentation/8.1/Setup/Administration/User_Security/Implement_Advanced_Security/Set_Up_SAML_for_the_Pentaho_Server http://docplayer.net/19831592-Saml-installation-and-integration-best-practices-updated-1-4-2016-authors-jonathan-jarvis-pedro-teixeira-and-joao-l-m.html When I try to access Pentaho, the browser goes to the Identity Server Login page: and after
Continue readingSoti Surf As Supported Browser For Okta Android SDK
Issue We are developing Okta integration with our Android App using the Okta SDK. The app successfully authenticates when Chrome is used as the supporting browser. However, we are unable to use Chrome as users are able to freely browse
Continue readingSpring Security Microsoft Oauth2 Login Errors
Issue I’m attempting to access Microsoft Account oauth without any Azure AD accounts, but I am receiving an unauthorized_client error before the redirect back to my app. Here is my yml configuration for spring security: spring: security: oauth2: client: registration:
Continue readingKerberos Delegation and Authentication: Impact due to Domain change
Issue [I’m fairly new to Kerberos Protocol] We have a customer, who back in 2020 was using a domain let’s call it customdom.itm, which has a user account krb-test-cd setup for Kerberos delegation and this domain is part of a
Continue readingCalling a function to get JSON bject before app.module.ts Loads (Angular)
Issue My app.module.ts file is :- import { MsalModule, MsalInterceptor } from ‘@azure/msal-angular’; import getConfig from ‘./env’; var config_values = getConfig(); // we are calling the function here, but it takes time to complete console.log("here",config_values); const isIE = window.navigator.userAgent.indexOf(‘MSIE ‘)
Continue readingNeed to sign in using twitter plus retrieve friends.. think I've messed it all up
Issue I am integrating in my application a sign on using facebook and twitter. I intend to later on down the line include other sign on providors. I’ve actually build it from some open source code I found online but
Continue readingSingle Signon Mechanism with AWS for multiple customers, some want SSO, some don't
Issue We have a site for our customers to log onto to get their relevant data. We have set it up on AWS using Cognito for user authentication. Each customer navigates to the same URL, enters their credentials, and then
Continue readingHow should I be implementing user SSO with AAD in a Django application (using the Django Microsoft Authentication Backend module)?
Issue I’m developing a Django (2.2.3) application with Django Microsoft Auth installed to handle SSO with Azure AD. I’ve been able to follow the quickstart documentation to allow me to log into the Django Admin panel by either using my
Continue readingRun time problem with an example of a personal Microsoft Teams application
Issue I’m studying to add SSO functions in a Teams personal application by using this example, https://github.com/pnp/teams-dev-samples/tree/master/samples/tab-sso. I chosed the version node.js. I registered the application on Azure-AD platform, I uploaded the manifest and .env files, and I ran npm
Continue readingHelpScout and SSO – Initiate Single Sign-On?
Issue I’m a SAML newbie, working on setting up SAML SSO for HelpScout using the saml2-js package. My app will be serving as its own identity provider. If a user on my site wants to log in to HelpScout, do
Continue readingFreshdesk Oauth SSO: CORS Error on Accessing Freshdesk Redirect URI?
Issue I’m setting up OAuth SSO for Freshdesk. I want the user of my app to be able to login to my Freshdesk support site, without having to create a new username/password. So far the following steps work: My site
Continue readingAWS SSO – "Request nameID format does not match our record"
Issue I’m trying to get a test app working with the AWS single sign-on service. When I hit the SSO login url and enter my credentials, it logs in fine, but then Amazon displays the error: Requeest nameID format does
Continue readingWhy does Azure AD (or other OIDC Idp) require to enter user credentials for sign-in after sign-out?
Issue I develop an authentication by extrenal idps in the my application. For while I support two idps using OpenId Connect protocol: Azure AD and Okta. My login page has widget for entering user’s credentials (for built-in users and for
Continue readingWSO2 Identity Server 5.7.0 SSO Login to .net Application and then goto callbackurl
Issue I have Is 5.7.0 and a .net application login with SSO I config my service provider : then Configure SSO : and then Write my code with c# for Login button : And Result is : I press login
Continue readingHow to add an application to Azure AD with SSO option SAML
Issue I have created an application within the Enterprise applications tab and I don’t have an option to Setup Single Sign-On. How can I add the SAML Sigle Sign-On option to my custom application? thanks. expected getting started options: actual
Continue readingIs it possible to setup Single sign-on for a Single Page Application that will initiate the SSO from an arbitrary (not pre-approved) domain?
Issue Our scenario is the following: We have an SPA that we package and send to multiple customers. The customers hosts the SPA on an arbitrary domain like www.unknown.com/spa/anything-goes, or www.also-unknown.com/spa/really-anything-goes, etc. The customer also opens the SPA in a
Continue readingHow to Securely Convert Open ID Connect Tokens to Cookies
Issue We have a client application we would like enable SSO via OIDC. The client app is an SPA with a dedicated back-end API. Currently, authentication is implemented via cookies and authorization is enforced at the back-end based on the
Continue readingSetting up SAML for Rocker.Chat (SP) with GSuite (IDP)
Issue I have an instance of Rocket.chat running on an Ubuntu server, and I am trying to configure SAML on Rocket.chat (SP) and GSuite (IDP) so that I can enable login to Rocket.chat with GSuite identities. After several rounds of
Continue readingHow can I authenticate asp.net web application with custom login server?
Issue I am making custom Single-Sign-On service with asp.net core. I made login server which returns JWT token in the cookie with validation. I would like to connect my web application to the login server, so the web application recognize
Continue readingSingle Sign On (SSO) from desktop app and web app
Issue Let’s say I have an Angular web application that authenticates users in the Azure AD using MSAL: tuturial:https://docs.microsoft.com/en-us/azure/active-directory/develop/tutorial-v2-angular Is there any way so that when a user is authenticated in a desktop app that an organization is using, for
Continue readingHow to authenticate with SharePoint Online for a PHP app?
Issue We have our PHP application that requires authentication, and for our clients that run SharePoint we’d like to offer some kind of SSO service, so that the users can use their SharePoint credentials (we did something similar with Google
Continue readingHow to authenticate with Apple SSO (TV Provider) using VideoSubscriberAccount framework
Issue I need to implement authentication scheme using Apple SSO for my application: Check for an signed user in Settings TV Provider Sing in into TV Provider from my app if there is no a signed user Get authentication payload
Continue readingJava SSO with Wildfly 8, Java 1.8.0_45 and Active Directory
Issue I was searching a lot about this topic but can’t find a solution. Short description of the requirements: SSO on a WebApp under Wildfly 8.2 Authenticate the Windows User to the Active Directory Fallback to Login Form, when SSO
Continue readingHow does SSO (Single Sign On) work
Issue I’m trying to wrap my head around SSO. It’s my understanding that SSO allows you to login once and get access to multiple apps (if you have rights). So, I log into App A. I establish a token. How
Continue readingAWS: Unable to login into aws-sdk using sso credentials
Issue I am trying to access AWS resources with AWS-SDK using SSO credentials from the node.js application. For this, first I have created my SSO profile from AWS CLI and then I am trying to use same profile in the
Continue readingAzure AD B2C Custom policy social buttons order
Issue I just wondering is there any way to manipulate the order of the social login buttons at custom policies? So in the example below, not FB bus MS login button is the first: rgds, ‘Child Solution My college just
Continue readingHow can I implement SSO between a web app and native app using IdentityServer?
Issue I’ve got a set of APIs written in ASP.NET. These are to be accessed by a web app and native mobile app, and should be protected by the SSO. I would like to be able have a SSO, where
Continue readingWhat is the use of the pre-auth user in SPNEGO SSO configuration?
Issue I’m using SPNEGO in order to implement SSO solution. During the configuration, I was required to use domain user credentials in 2 steps: In the web.xml of my application: <init-param> <param-name>spnego.preauth.username</param-name> <param-value>myuser</param-value> </init-param> <init-param> <param-name>spnego.preauth.password</param-name> <param-value>mypassword</param-value> </init-param> In the
Continue readingOkta Not Redirecting due to insecure connection
Issue I got a request from the partner website to establish SSO with them and they provided their OKTA keys to us. Vue.use(Auth, { issuer: ‘https://{theirURL}.com/’, clientId: ‘{theirCliendId}’, redirectUri: ‘http://localhost:8080/auth/callback’, scope: ‘openid profile email’ }) let token = {}; const
Continue readingHow to Create a Client in Keycloak to use with AWS Cognito Identity Federation
Issue I have a user base with identity and authentication managed by keycloak. I would like to allow these users to login and use AWS API Gateway services with Cognito using an OpenID Connect federation. The AWS documentation on using
Continue readingFeasibility of SSO with SameSite Lax cookies, only?
Issue Background I was toying with the aspect of implementing SameSite for my cookies today. I already had HttpOnly and Secure so I thought this probably wouldn’t be a big deal. Why It Broke Well, it turned out that lots
Continue readingHow to use dynamic passport SAML stratagey?
Issue I am trying to implement SAML for google and okta for the different enterprises. Now, I have multiple entry points for that. passport.use( "saml", new SamlStrategy( { protocol: "https://", entryPoint: "entry url", // SSO URL (Step 2) issuer: "issuer
Continue readingSingle Sign On between WordPress and a Custom Website
Issue I am building an e-commerce website with WordPress. And I have list of emails and names. My website need to be accessed only by people with those emails when they click on a link on another custom website wich
Continue readingSimpleSAMLphp Unable to validate Signature error
Issue SimpleSAML_Error_Error: UNHANDLEDEXCEPTION Backtrace: 0 simplesamlphp/www/module.php:189 (N/A) Caused by: Exception: Unable to validate Signature Backtrace: 6 simplesamlphp/lib/SAML2/Utils.php:149 (SAML2_Utils::validateSignature) 5 simplesamlphp/lib/SAML2/Assertion.php:494 (SAML2_Assertion::validate) 4 simplesamlphp/modules/saml/lib/Message.php:185 (sspmod_saml_Message::checkSign) 3 simplesamlphp/modules/saml/lib/Message.php:560 (sspmod_saml_Message::processAssertion) 2 simplesamlphp/modules/saml/lib/Message.php:532 (sspmod_saml_Message::processResponse) 1 simplesamlphp/modules/saml/www/sp/saml2-acs.php:81 (require) 0 simplesamlphp/www/module.php:144 (N/A) I’m getting an error
Continue readingOAuth2 protected API. How to allow customer's to SSO using its own authorization server?
Issue I have an Angular Single Page Application (SPA) talking to my ASP.NET API. The API is protected by my own Oauth2 server (IdentityServer4). One of my customers (let’s call him X) wants SSO: Their users on my platform would
Continue readingSharePoint SSO with a PHP application on a different server?
Issue I need to implement a SSO between a SharePoint site and a custom PHP-based site which resides on a different domain. I need to use the SharePoint user accounts to log in the PHP site. (I’ll have a full
Continue readingAzure B2C SSO for my web application and powerapps application not working
Issue I have configured my Azure B2C to enable SSO feature, after enable when I login into my web application and redirect to power apps application it does not show as logged in instead it is showing for SIGN IN
Continue readingService providers with SAML version 2 for SSO accessible to public?
Issue I’m wondering if there are any publicly available SAML version 2 SPs (Service Providers) that can be used to test SSO(Single Sign On) Salesforce and Google apps both have an SSO solution, but how to go get access to
Continue readingIs it possible to have multiple azure ad applications for one web app?
Issue I want to configure multiple azure ad application for one web app (don’t know whethere it is possible or not). Each application configured on the Azure portal will be single tenant application. When user enters the username based on
Continue readingSAML Signature Tag Name Standard
Issue Shouldn’t the SAML Signature be always <ds:Signature ></ds:Signature>… I have noticed some Idp use <Signature> and some use <ds:Signature> In C# I am trying to get the Signature node using. XmlNodeList nodeList = samlDoc.GetElementsByTagName("ds:Signature"); It fails when the Signature
Continue readingOutlook add on redirects to browser
Issue We have a site used by Outlook addin hosted on sharepoint, when a user tried to access it they had a browser window open on the Sharepoint Online site, our front end is hosted there but it doesn’t bring
Continue readingsaml2Login method cannot be resolved
Issue I followed Spring Security SAML2 Using G Suite as Idp Cannot resolve method ‘saml2login’ in ‘Http Security’ I am getting this error some body plz help. Solution Solution: I am using spring boot 2.1.x version in my project. On
Continue readingHow to Authenticate users in Azure AD to a custom web app deployed in Google cloud run?
Issue I have experience in integrating AWS cognito with Azure AD (SSO). But I don’t know how to implement similar authentication in GCP. I want to authenticate the users in Azure AD to use the custom web app deployed in
Continue readingOpenIdConnectProtocolValidationContext.Nonce was null when using Okta in Asp.Net Web Application
Issue I have a .Net Asp.Net WebApplication, I am trying to use Okta for Single Sign On capabilities. I have all my code working and running except when I use Google Chrome 80+ to sign in. When I sign on
Continue readingGet XHR resource protected by SSO from AJAX
Issue Basically I have an online API (XHR) protected by SSO (OAuth 2.0 based on Vouch). Upon accessing the API via GET request you get Error 302 and redirect you to login and then if authenticated successfully you back to
Continue readingMicrosoft Teams tab loading app with Auth0
Issue I got an angular SPA using Auth0 for authentication. I tried adding it as an app i Microsoft teams and the usual username and password login works fine however, using LinkedIn and Google ended up not working in the
Continue readingSharing owin identity cookie with MVC 5?
Issue I´m doing SSO App with user management in MVC 5, but I can’t share the cookie between apps for example http ://SSO http ://app different sites in IIS, I think this is something like cross domain, so in the
Continue readingAccess to Azure with SAML and Salesforce
Issue I configure on Azure AD (my IDP) the Salesforce Sandbox Application (my SP). I setup all following this tutorial: https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/salesforce-tutorial But when i try to connect using SSO i have this error: AADSTS650056: Misconfigured application. This could be due
Continue readingError while installing Python-saml package in windows
Issue I would like to use python-saml for sso integration with flask web app. while I am trying to install python-saml package using pip install python-saml, I am getting the below error message. (myvenv) C:\Users\sekar>pip install python3-saml==1.9.0 Collecting python3-saml==1.9.0 Using
Continue readingReal world examples of websites using oauth2 for authorization
Issue I have read that oauth2 can be used for both authorization as well as authentication. I have often encountered the 2nd usecase where when I want to login to a new website where I don’t already have account, I
Continue readingSignification of Identity provider Binding
Issue I am implementing SSO using an external Identity provider to which I do not have access yet. The IDP metadata IDPSSODescriptor has one SingleSignOnService tag with a binding value of: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST Does this imply that I cannot initiate an
Continue readingHow do I resolve a "No reply address provided" error when using MSAL.js?
Issue I’ve copied the example app at this repository to try to implement single sign-on: https://github.com/Azure-Samples/ms-identity-javascript-v2. Into the msalConfig’s auth object within the authConfig.js file I substituted my application’s clientId and authority values, and used a redirectUrl value of "http://localhost:5500"
Continue readingSpring OAuth2 automatical login with Keycloak
Issue I am not well experienced in Spring Security so my questions may sound a little weird. My environment consists of 4 parts: Keycloak authorization server (authorization server) Spring resource server application (resource server) 2 OAuth2 client applications (clients) I
Continue readingHow is a failed login attempt represented with SAML with SP-initiated SSO?
Issue I would like to set up my Service Provider (SP) for SP-initiated SSO. When the user successfully logs in, I’m expecting the IdP to POST a SAML Assertion to my SP (is this called endpoint on my SP called
Continue readinghow to do Okta SSO Integration with SpringBoot app? and all user management would be on Okta's Side
Issue I would like some help please, Trying to implement okta sso with some specifications with my app. If I want to add the ability to SSO with OKTA to an already existing Application, Without creating new users in the
Continue readingWordPress SSO – Azure AD B2C – Sign up and sign in User Flow – How to link directly to registration page?
Issue I’m trying to setup a single sign on system using WordPress and Azure AD B2C. I’ve got it working, however, I’m trying to find a way that would allow me to link to the registration page on Azure directly.
Continue reading.NET Core application to connect with Windows Server 2012 R2 ADFS (Version 3.0) supporting OAUTH 2.0 authorization protocol
Issue I am trying to create a login mvc application in .NET through which any identity provider that supports OpenIdConnect for authentication and Oauth2.0 for authorization should be able to communicate. The objective is all my microservices will then call
Continue readingArtifactory: SAML SSO group matching not working
Issue We are using ADFS to allow users to log into Artifactory and basically it works fine. Problem is, that the group memberships aren’t recognized. Can anyone tell me what the problem is? Using Artifactory Pro 5.4.4 ADFS 3.0 XML
Continue reading'Forbidden' response when running middleware with WSGI-Kerberos
Issue For a web-application I am writing a middleware using the WSGI-Kerberos to handle the authentication. In general these efforts intend to implement the Single Sign-On technology. So, users that are logged/active in the Active Directory would get an access
Continue readingKerberos: Negotiate Header was invalid (Cause GSSException: No valid credentials provided (Mechanism level: Failed to find any Kerberos credentails))
Issue Moin! My attempts to authenticate a user via SSO with Spring Security 5 and Kerberos fail due to an exception from deep in the Kerberos code. I will first show the stack trace and the code causing it and
Continue readingWhich is the best sample/approach to start openiddict server to provide logins to wordpress?
Issue We have a client database (Username, Passwordhash, Address…) sitting on an MSSQL table on a windows server. Now we are creating a WordPress/Woocommerce Site on Linux server and want to SSO into wordpress based on the above mentioned credentials.
Continue readingHow to configure SSO in moodle
Issue I am new to moodle and I want to bypass login screen of moodle and make login rest call to bypass this screen, can I do this using SSO? Solution Boost is the default theme you’ll see after Moodle
Continue readingHow to get actual user email which he/she used for Azure AD SSO login?
Issue I want to get the user emails used for Azure organization on callback action of SSO web login flow. Could you please advise which property and which API permission should I request for it? I tried upn, preferred_username, and
Continue readingHow can I restrict client access to only one group of users in keycloak?
Issue I have a client in keycloak for my awx(ansible tower) webpage. I need only the users from one specific keycloak group to be able to log in through this client. How can I forbid all other users(except from one
Continue readingSSO. How to use IdP as a Proxy?
Issue Implement SSO flow for authentication. I’m a newbee here and cannot get some places. I tried to implement service provider initiated flow. And it looks like this: User clicks on button on my frontend app to authenticate by one
Continue readingsimpleSAMLphp SP metadata returning entityID of http instead of expected https
Issue I’ve currently got a simplesamlphp installation as a service provider on a CentOS server. I have the config/authsources.php defined as follows: ‘default-sp’ => array( ‘saml:SP’, ‘entityID’ => null, When I access the /saml/ url via https and navigate to
Continue readingHow to implement SSO with multi back-end services and decoupled architecture
Issue BACKGROUND: There are several services (spring boot REST API services and some other productions with REST API) as back-end and some angular applications (some web site with different second-level domain name) as front-end. One front-end application can call some
Continue readingASP .NET Core FormsAuthentication Cookie
Issue I have several ASP.NET MVC 5 applications. All applications are deployed on subdomains of a common domain. A single application is responsible for user login and the session is shared among all subdomains because we have the same machineKey
Continue readingHow do I impersonate SAML/SSO from a computer?
Issue I have a website that I need to access periodically. From the browser it works fine. The site gives me a cookie which expires in 15 minutes. If I go back to the server after an hour, it redirects
Continue readingVanilla JS Single Sign-On attempt with MSAL.js leading to pop-up window showing a copy of the same page
Issue I’ve copied the example app at this repository to try to implement single sign-on: https://github.com/Azure-Samples/ms-identity-javascript-v2. I’ve changed the config values match those of the Azure configuration. I’m using the public version of the authority: "https://login.microsoftonline.com/[APP VALUE HERE]" in this
Continue readingHow can I fully trust a SAML IDP?
Issue My web application is allowing SSO via SAML authentication and I am doing the development now. The idea is that this by-passes my application’s local authentication and the user is automatically authenticated once they authenticate with the SAML IDP.
Continue readingOpenID connect Successful response has # between redirect uri and access token
Issue I have setup an App in Azure Ad for Oauth 2.0 using JWT, the access token is returned successfully but the url has a hashtag(#)between the redirect URL and the access_token. Application is expecting a question mark(?) to complete
Continue readingHttpContext.Current.User.Identity.IsAuthenticated results in infinite redirect loop when integrating okta openidconnect with .net core project
Issue Here is startup.cs i have configured okta openid connect as per below. please review it public class Startup { public Startup(IConfiguration configuration) { Configuration = configuration; } public IConfiguration Configuration { get; } // This method gets called by
Continue readingIssue in migrating asp.net application to Microsoft Edge (Version 91.0.864.70 (Official build) (64-bit))
Issue In my organisation we have decided to make compatible a asp.net application with SSO (Single Sign-On) so it works for Microsoft Edge. We removed all inline style and script to external files. When we debug this application without SSO
Continue readingCan SSO be used by AD users when using my externally hosted website developed for those users?
Issue I am developing a web site for an organization that used AD for validating its own employees. I am required to host the web site externally. The organization requires a Single Sign On for its employees. Can this be
Continue readingMicrosoft MSAL React SPA, and RESTful Django API
Issue I don’t know why I can’t find confirmation in the docs, maybe I am not navigating them correctly, although MSAL seems to have options to fit it into any application. This is my first time integrating a SAML sso
Continue readingHow to setup OKTA device Authorization Flow on server in order to integrate OKTA SSO for Remote IOT devices
Issue I need to authorize the IOT devices that do not have a UI but are able to call some APIs after being authorized by OKTA. I have the list of devices that needs to be authenticated for calling APIs.
Continue readingmoving the Yeoman office SSO client secret
Issue I am developing an outlook add-in using the Yeoman Office generator (Office Add-in Task Pane project supporting single sign-on). All documentation on using this program says to run "npm run configure-sso" after Yeoman has finished and it builds the
Continue readingSingle Sign On with Okta session
Issue I have multiple web applications running in different domains. Okta is the identity/auth provider for all these applications. After integrating with Okta in one of the application (following the Java example provided in Okta documentation), a new cookie (sid)
Continue readingHow to create a SSO Service Provider?
Issue I am new to the concept of Single Sign On. We already have a Java web application which manages its user. Now the requirement is that the authentication will be provided by the SSO Idp at customer end (using
Continue readingEncrypt Saml Assertion with public Certificate
Issue I am trying to encrypt a Saml assertion with the public certificate provided by the vendor can someone provide the correct way of encryption. What encryption method is used for encrypting XML. Any suggestion will be really helpful. Solution
Continue readingSignature as parameter in the authentication request
Issue I should get a GET authentication request with a certain set of parameters: “https://domain_name_of_idp_here/idp/profile/SAML2/Redirect/SSO?” + “SAMLRequest=” + SAMLRequest + “&SigAlg=” + SigAlg + “&Signature=” + Signature Thus, I’m interested in the parameters: SAMLRequest SigAlg Signature When I used OIOSAML,
Continue readingApplication SSO between On-premises and Azure Cloud
Issue I have a web application (A) which is hosted on on-premises server (Tomcat) and using Active directory for authentication. And also a new web application (B) will be hosted on Azure (AKS) and using AAD for authentication. My use
Continue readingsimpleSamlPHP isAuthenticated always returning false
Issue I just started developing with simplesamlPHP. I installed simpleSamlPhp and I followed the steps given in https://simplesamlphp.org/docs/development/simplesamlphp-sp-api to integrate my php application with simpleSAMLPhp and I am using the simpleSaml APIs given in the document. Below is the code:
Continue readingAngular dist couldnt be loaded in Teams with node js
Issue i managed to create an teams app with sso. So i wanted to take this local app to an azure web app. So i started deploy my angular frontend from my node js backend like following: app.get(‘*’, function(req, res)
Continue readingKeycloak for IDM
Issue First and foremost, this post doesn’t have any intention to strike down any parties as mentioned in my question. In fact, I’m not sure whether i should ask this question to this forum or not, but after some thoughtful
Continue readingCAS 5.2.3 & LDAP Attribute
Issue I have CAS 5.2.3 and an LDAP connection. LDAP has 1 domain and 2 ou (ou = groups, ou = people). Each group has a cn with the group name. Each such group contains several members, where the username
Continue readingKeycloak desktop java adapter deletes KEYCLOAK_IDENTITY cookies
Issue I’ve got a problem with Keycloak java adapter. I try to integrate desktop application with Keycloak and enable SSO between a few other web applications. The problem is that when I try to login to Keycloak everything works perfect
Continue reading