Reputation: 128
WSO2 Identity Server 5.1.0 not returning user claims in SAML Response
While trying out the new version of WSO2 Identity Server 5.1.0 I'm having problems returning claims in the SAML response. While this worked in WSO2 IS 5.0.0 SP1. I've mapped the required claims and added them to my SP, also I configured the SP to always return the user attributes.
I've configured the SP claim mapping:
My SAML configuration:
Any help is greatly appreciated. I'm getting the feeling this might be a bug.
EDIT: In WSO2 5.1.0 it is required to add the Attribute Consuming Service Index to the SAML Request. In WSO2 5.0.0 SP1 it worked even without setting this value in the SAML Request.
Upvotes: 3
Views: 1271
Answers (1)
Reputation: 86
If I got you correctly, You can authenticate from IS without any errors, but didn't get claims on SAML response.
I have tried this with Travelocity sample. It is working as expected. I got the user claims in the SAML response. According to the screen shots that you have attached, you have done the configurations correctly. Please check & verify that you have values on these mapped claims. If there is no values in user's profile, claims will not be in SAML response. You can check this with SSO Tracer or SAML Tracer.
Upvotes: 3
Related Questions
- How can I use the claims given in a SAML response to populate user attributes during JIT Provisioning in WSO2 IS?
- Not getting remote claims from wso2
- WSO2 IS 5.4.0: Using the username as attribute in SAML asserton
- WSO2 Identity Server not returning requested claims with OAuth/OpenID
- WSO2 Identity Server 5.0.0 boolean claims
- SAML Claims not returned by WSO2 IS 5.1.0
- WSO2 IS 5.1.0, send session information as SAML claims
- Configuring WSO2 Identity Server as Key Manager with API Manager
- How can I refresh SAML assertion information from an WSO2 identity server?