Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-18141

AM no longer uses global SAML configuration

    XMLWordPrintable

    Details

    • Bug
    • Status: In Progress
    • Major
    • Resolution: Unresolved
    • 7.1.0, 7.0.1
    • None
    • SAML
    • Rank:
      1|i05bja:
    • AM Sustaining Sprint 87, AM Sustaining Sprint 88, AM Sustaining Sprint 89
    • 3

      Description

      Bug description

      When changing the Attribute name for Name ID information value in the global services SAML v2.0 Service Configuration, AM continues to use the default value. I have not tested other attributes or configuration listed here.

      How to reproduce the issue

      1. Configure two AMs; one SP and one IDP
      2. On the IDP in Configure > Global Services > SAML v2.0 Service Configuration > Attribute name for Name ID information set this to postalAddress
      3. Start and complete SAML flow http://am.example.com:8080/openam/saml2/jsp/spSSOInit.jsp?metaAlias=/sp&idpEntityID=myidp
      4. View the identity entry using ldapsearch or GUI alternative
      Expected behaviour
      Federation link data should be stored in the postalAddress attribute
      Current behaviour
      AM stores this in the default value sun-fm-saml2-nameid-info

      Work around

      If you upgrade to 7.0.1 (from 6.5.x for example) AM uses the correct attribute.

        Attachments

          Activity

            People

            sfraser Sam Fraser
            aaron.haskins Aaron Haskins
            Votes:
            1 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:

                Time Tracking

                Estimated:
                Original Estimate - 8h
                8h
                Remaining:
                Remaining Estimate - 8h
                8h
                Logged:
                Time Spent - Not Specified
                Not Specified