Return-Path: 
 <issues-return-36736-apmail-cxf-issues-archive=cxf.apache.org@cxf.apache.org>
X-Original-To: apmail-cxf-issues-archive@www.apache.org
Delivered-To: apmail-cxf-issues-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id DCBD618643
	for <apmail-cxf-issues-archive@www.apache.org>;
 Tue, 12 Jan 2016 16:52:40 +0000 (UTC)
Received: (qmail 42776 invoked by uid 500); 12 Jan 2016 16:52:40 -0000
Delivered-To: apmail-cxf-issues-archive@cxf.apache.org
Received: (qmail 42717 invoked by uid 500); 12 Jan 2016 16:52:40 -0000
Mailing-List: contact issues-help@cxf.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@cxf.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@cxf.apache.org>
List-Post: <mailto:issues@cxf.apache.org>
List-Id: <issues.cxf.apache.org>
Reply-To: dev@cxf.apache.org
Delivered-To: mailing list issues@cxf.apache.org
Received: (qmail 42251 invoked by uid 99); 12 Jan 2016 16:52:40 -0000
Received: from arcas.apache.org (HELO arcas) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 12 Jan 2016 16:52:40 +0000
Received: from arcas.apache.org (localhost [127.0.0.1])
	by arcas (Postfix) with ESMTP id E5A3D2C1F6B
	for <issues@cxf.apache.org>; Tue, 12 Jan 2016 16:52:39 +0000 (UTC)
Date: Tue, 12 Jan 2016 16:52:39 +0000 (UTC)
From: "Colm O hEigeartaigh (JIRA)" <jira@apache.org>
To: issues@cxf.apache.org
Message-ID: <JIRA.12923431.1450706823000.86673.1452617559937@Atlassian.JIRA>
In-Reply-To: <JIRA.12923431.1450706823000@Atlassian.JIRA>
References: <JIRA.12923431.1450706823000@Atlassian.JIRA>
 <JIRA.12923431.1450706823555@arcas>
Subject: [jira] [Commented] (FEDIZ-141) POST Binding for SAML SSO Remote IDP
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/FEDIZ-141?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15094252#comment-15094252 ] 

Colm O hEigeartaigh commented on FEDIZ-141:
-------------------------------------------

Hi Jan,

The IdP is still using the redirect binding to send the request to the SAML SSO IdP. Is this ok for your scenario or should we also support sending the request via POST?

Colm.

> POST Binding for SAML SSO Remote IDP 
> -------------------------------------
>
>                 Key: FEDIZ-141
>                 URL: https://issues.apache.org/jira/browse/FEDIZ-141
>             Project: CXF-Fediz
>          Issue Type: Improvement
>          Components: IDP
>            Reporter: Jan Bernhardt
>            Assignee: Jan Bernhardt
>             Fix For: 1.3.0
>
>
> Currently the Fediz IDP supports only a GET Binding for a SAML Response from a remote (trusted 3rd party) SAML IDP.
> It is not recommended to send such big payloads like the {{SAMLResponse}} within the URL as a parameter. Thus POST binding should be the preferred solution. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)