wso2is - WSO2 Identity Server SAML SSO endpoint hard codes the AuthnContextClassRef -
in wso2is v4.6.0, authncontextclassref value hardcoded urn:oasis:names:tc:saml:2.0:ac:classes:password. in fact, saml sso endpoint authenticates users via https default , authncontextclassref value in case should urn:oasis:names:tc:saml:2.0:ac:classes:passwordprotectedtransport.
what's best way correct or issue on wso2's radar?
i've created jira ticket issue: https://wso2.org/jira/browse/identity-2585
while waiting offical fix, can override defaultsaml2ssomanager specifiing own class in repository/conf/security/application-authentication.xml with:
parameter name="saml2ssomanager">my.version.of.saml2ssomanager
i use modified version of defaultsaml2ssomanager , able connect our idp.
Comments
Post a Comment