SAML assertion is not stored by picketlink in the session attribute

Solution Verified - Updated -


  • SAML assertion cannot be retrieved from the session in the Service Provider (SP) application.

  • Although the option ASSERTION_SESSION_ATTRIBUTE_NAME is correctly setup in my SP picketink.xml, the assertion is not returned when session.getAttribute is called.

    <Handler class="org.picketlink.identity.federation.web.handlers.saml2.SAML2AuthenticationHandler">
        <Option Key="ASSERTION_SESSION_ATTRIBUTE_NAME" Value="org.picketlink.sp.assertion"/>


  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 6
    • 7
  • Picketlink SAML with encryption enabled.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content