Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-403

Document how to have unique session variables names in multiple SAML SP case

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 3.0.0
    • 3.1.0
    • Doc, SAML
    • None
    • 3.1 - QA sprint / bug fixing

    Description

      SAML supports is storing some values inside the session, on a per-service-provider basis.

      That means that if you're having 2 (or more) SP(s) hosted on 1 OpenIG instance, this is likely you'll have session variable clash (one may override the later without further notifications), leading to unexpected strange behaviours.

      In order to deal with this, a special care needs to be take for the following properties: assertionMapping, authnContext, subjectMapping and sessionIndexMapping.

      Attachments

        Activity

          People

            Mark Mark Craig
            guillaume.sauthier Guillaume Sauthier
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: