Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-11921

Incorrect NameId Format offered for SAML2 auth module in console

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 13.0.0, 13.5.0, 13.5.1, 14.0.0, 14.1.0, 14.1.1, 14.5.0
    • Fix Version/s: 6.5.3, 7.0.0
    • Component/s: console
    • Labels:
    • Environment:
      irrelevant
    • Target Version/s:
    • Support Ticket IDs:

      Description

      Bug description

      Inline help for the SAML2 authentication module shows incorrect NameID format

      How to reproduce the issue

      1. initially configure AM
      2. created hosted SP
      3. register remote IdP
      4. configure SAML2 auth module in root realm
      5. click on 'i' button for "NameID Format"
      Expected behaviour
      urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified should be shown
      
      Current behaviour
      urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified is shown
      

      See section 8.3.1 of Core SAMLv2 spec

      Code analysis

      amAuthSAML2.properties
      a512.help=(Optional) Use this parameter to specify a SAML Name Identifier format identifier such as \
        <pre>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</pre> \
        <pre>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</pre> \
        <pre>urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified</pre>
      

      has to be changed to

      amAuthSAML2.properties
      a512.help=(Optional) Use this parameter to specify a SAML Name Identifier format identifier such as \
        <pre>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</pre> \
        <pre>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</pre> \
        <pre>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</pre>
      

        Attachments

          Activity

            People

            • Assignee:
              peter.major Peter Major [X] (Inactive)
              Reporter:
              bthalmayr Bernhard Thalmayr
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: