Open cgeorgilakis opened 3 years ago
From Keycloak document :
Actually, what Keycloak sends is based on HTTP-POST Binding for AuthnRequest and SAML document inside it is based on HTTP-POST Binding Response.
Moreover, in document Keycloak add extension if HTTP-POST Binding for AuthnRequest is false, Want AuthnRequests Signed is true and addExtensionsElementWithKeyInfo is true. However, addExtensionsElementWithKeyInfo is set to false in parsing and can not be edited by user!
SAML IdP values from xml:
For federation we keep same functionality for almost all values. We only put extra value to alias and displayname. Finally, in some fields default values like Keycloak SAML IdP default values are put.
SAML IdP exporting SAML SP metadata :