[LPS-102259] As a developer, I want SAML to support encrypted attributes in assertions - Liferay Issues

XML

Word

Printable

Details

Type: Story
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: Application Security > SAML
Labels:
- backlog
- out-of-scope

Epic/Theme:
- SAML_IdP&SP

Description

We already have ~~LPS-88923~~ support for encrypted assertions, meaning attributes will also be encrypted. But there are some enterprise scenarios when attributes should be encrypted separately from the assertion.

For example when Liferay is acting as SP for user authentication, and consumes web services from other backend systems that require those attributes. It might be desirable for the IDP to encrypt those attributes using the public keys of those other backend systems, so Liferay is unable to read them and simply acts as a proxy.

Attachments

Activity

People

Assignee:: SE Support

Reporter:: Stian Sigvartsen

Recent user:: Kiyoshi Lee

Participants of an Issue:: SE Support, Stian Sigvartsen

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 25/Sep/19 3:28 AM

Updated:: 04/Jan/22 7:29 AM

Packages

Version	Package