search

eugenp / tutorials

Just Announced - "Learn Spring Security OAuth":
http://bit.ly/github-lsso
MIT License
36.6k stars 54.48k forks source link

Article needs to be updated to get a SAML setup correctly #16287

Open siddharth-78 opened 6 months ago

siddharth-78 commented 6 months ago

The article for the saml2 setup (https://www.baeldung.com/spring-security-saml), fails a SLO. As the it does not mention anything in regard to adding a SP Issuer, which will lead to SP SLO failure, while IDP initiated logins would work well.

The SP Issuer needs to be same as the "Audience Restriction".

I have tried and verified this. As without the SP issuer I can see the following log in my Okta:

Apr 02 19:50:06

Siddharth Baranidharan (User)
User single sign out from app
FAILURE: Issuer does not match
SAML SLO  (AppInstance)
Siddharth Baranidharan  (AppUser)

Requesting to update the document, will help other folks implement without any issues :)

marceloparis commented 1 month ago

please!! post the solution!