cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <>
Subject [jira] [Commented] (CLOUDSTACK-8457) Make SAML plugin production grade
Date Mon, 13 Jul 2015 11:29:04 GMT


ASF subversion and git services commented on CLOUDSTACK-8457:

Commit 95f3df1f60e488a7376872afac3dfaf53bd5ef29 in cloudstack's branch refs/heads/saml-adduserfix
from []
[;h=95f3df1 ]

CLOUDSTACK-8457: Append IDP domain if append domain setting is enabled

Appends a domain to user/account name if global setting is enabled, useful
in case of multiple IDP server. By default the setting is set to false (keep as
it is).

Signed-off-by: Rohit Yadav <>

> Make SAML plugin production grade
> ---------------------------------
>                 Key: CLOUDSTACK-8457
>                 URL:
>             Project: CloudStack
>          Issue Type: Improvement
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: SAML
>            Reporter: Rohit Yadav
>            Assignee: Rohit Yadav
>             Fix For: Future, 4.6.0, 4.5.2
> The current SAML plugin is not well tested with major IdPs used in production such as
Shibboleth. It is also limited to using HTTP-redirect only and does not support HTTP-Post
and other artifacts. Further, the security concerns are not well addressed, for example both
authorization, creation of users/accounts (on first login) and authentication is done by the
plugin which needs to be tested wrt security, addressed and improved.

This message was sent by Atlassian JIRA

View raw message