ComponentSpace

Forums



How to verify if login token is valid?


How to verify if login token is valid?

Author
Message
Jorge Garcia Huertos
Jorge Garcia Huertos
New Member
New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)New Member (32 reputation)

Group: Forum Members
Posts: 17, Visits: 74
Hi, 

I am working in a IdP-initiated project and we are the SP part.

1. As the Service Provider part, how the SP verifies if the login token is valid?

2. If the user authenticates and then closes the tab and opens a new one, is the authentication process saved or do they have to be authenticated again? In case you do not have to re-authenticate, how do you keep the authentication, with cookies?

Thanks.

JorgeGHS
ComponentSpace
ComponentSpace
ComponentSpace Development
ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)ComponentSpace Development (4.4K reputation)

Group: Administrators
Posts: 3.2K, Visits: 11K
Hi Jorge,

1. Either the SAML response or the SAML assertion sent by the IdP should be signed. As long as the signature verifies and assuming you already have a trust relationship with the IdP, you should accept that the IdP has authenticated the user and that the SAML assertion is valid.

2. The authentication cookies are maintained by the IdP and SP applications. We don't use authentication cookies. There is a SAML session cookie but this is used to support the SAML protocol including support for SAML logout. Typically if you close the browser rather than simply switching tabs within the browser, the authentication cookies will be lost and the user will have to login again at the IdP.

Regards
ComponentSpace Development
GO


Similar Topics


Execution: 0.000. 1 query. Compression Enabled.
Login
Existing Account
Email Address:


Password:


Select a Forum....












Forums, Documentation & Knowledge Base - ComponentSpace


Search