cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <>
Subject [jira] [Commented] (CLOUDSTACK-8457) Make SAML plugin production grade
Date Fri, 29 May 2015 16:41:17 GMT


ASF subversion and git services commented on CLOUDSTACK-8457:

Commit e80c6a8a51108d640a108ff18b6f91adf65aac5e in cloudstack's branch refs/heads/saml-production-grade
from []
[;h=e80c6a8 ]

CLOUDSTACK-8457: Refactor and cleanup SAML plugin code

- Refactor SAMLUtils to saml plugin
- Remove redundant code to SAMLUtils
- Fix tests
- In case no username is found, throw exception

Signed-off-by: Rohit Yadav <>

> Make SAML plugin production grade
> ---------------------------------
>                 Key: CLOUDSTACK-8457
>                 URL:
>             Project: CloudStack
>          Issue Type: Improvement
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: SAML
>            Reporter: Rohit Yadav
>            Assignee: Rohit Yadav
>             Fix For: Future, 4.6.0, 4.5.2
> The current SAML plugin is not well tested with major IdPs used in production such as
Shibboleth. It is also limited to using HTTP-redirect only and does not support HTTP-Post
and other artifacts. Further, the security concerns are not well addressed, for example both
authorization, creation of users/accounts (on first login) and authentication is done by the
plugin which needs to be tested wrt security, addressed and improved.

This message was sent by Atlassian JIRA

View raw message