-
When validating authentication the SAML NameID is compared to the email-address of the user. These do not need to be the same. When the NameID id different from the email-address, an error is presente…
-
Currently in the language switcher there isn't a way to override the EN (or NL) values. We have a second language (FR), we can still leverage the NL translation ability by using French translations in…
-
Hi ,
I have a requirement that, i wanted to implement Mujina with my existing End user application. I have 3 different end user applications, mainly focusing on implementing SSO between Mujina-idp…
-
-
In the [build.xml](https://github.com/OpenConext/OpenConext-engineblock/blob/fd5c24897240b3083ee3206d63aa5208baf4170a/build.xml#L90-L99), a temporary fix was introduced in order to deal with Symfony's…
-
OpenConext currently sends saml:AuthenticatingAuthority as part of the saml assertion to every SP, e.g.
``` xml
https://idp.surfnet.nl
```
which contains the IdP that handled the login. There is n…
-
It would be nice if the default engien website (https://engine.openconext.org) would show the certificate fingerprint next to the metadata and the full cert.
-
Currently Spring Security OAuth supports code and token as response type. If I want to implement OpenID Connect Protocol I have to allow hybrid response types (e.g. response_type=code id_token).
I w…
-
I noticed that SAML protocol-level errors are logged at INFO-level:
https://github.com/OpenConext/OpenConext-engineblock/blob/707cd875b13ce70f7209b924722e379f112f6995/library/EngineBlock/Corto/Modu…
-
Hello, we're in the midst of bringing up our Openconext-Deploy repo to the latest release. I've got most of the needed variables added to our deployment, but running into some errors for some that are…