cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <>
Subject [jira] [Commented] (CLOUDSTACK-8459) Improve SAML plugin to support multiple endpoint bindings
Date Fri, 29 May 2015 13:44:20 GMT


ASF subversion and git services commented on CLOUDSTACK-8459:

Commit bea84a774dc690d30132eb57b3d0a1ebcb2f0743 in cloudstack's branch refs/heads/saml-production-grade
from []
[;h=bea84a7 ]

CLOUDSTACK-8459: Authn requests must use either HTTP POST/Artifact binding

As per SAML v2.0 spec section 4.1.2, the SP provider should create authn requests using
either HTTP POST or HTTP Artifact binding to transfer the message through a
user agent (browser in our case). The use of HTTP Redirect was one of the reasons
why this plugin failed to work for some IdP servers that enforce this.

Signed-off-by: Rohit Yadav <>

> Improve SAML plugin to support multiple endpoint bindings
> ---------------------------------------------------------
>                 Key: CLOUDSTACK-8459
>                 URL:
>             Project: CloudStack
>          Issue Type: Sub-task
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: SAML
>            Reporter: Rohit Yadav
>            Assignee: Rohit Yadav
>             Fix For: Future, 4.6.0, 4.5.2
> Consider supporting following SAML endpoint bindings that are possible with ACS API server
> urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign                           
> urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST                                      
> urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact  

This message was sent by Atlassian JIRA

View raw message