SAML assertion is not stored by picketlink in the session attribute

Solution Verified - Updated -

Issue

  • SAML assertion cannot be retrieved from the session in the Service Provider (SP) application.

  • Although the option ASSERTION_SESSION_ATTRIBUTE_NAME is correctly setup in my SP picketink.xml, the assertion is not returned when session.getAttribute is called.

    <Handler class="org.picketlink.identity.federation.web.handlers.saml2.SAML2AuthenticationHandler">
        <Option Key="ASSERTION_SESSION_ATTRIBUTE_NAME" Value="org.picketlink.sp.assertion"/>
    </Handler>
    

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 6
    • 7
  • Picketlink SAML with encryption enabled.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In