SAML Bearer Assertion Flow - how to setup Keycloak to issue tokens based on SAML assertion

trojanbug · July 27, 2020, 6:11pm

Hello All,

I am struggling to find documentation or advice describing usage of SAML Bearer Assertion Flow with Keycloak. The grant type grant_type=urn:ietf:params:oauth:grant-type:saml2-bearer. Alternatively, any information on configuring Token Exchange with Keycloak would be appreciated, as the flow seems similar enough (while rules of tusting the 3rd party token are surely different).

I would like Keycloak to verify presented SAML assertion in the OIDC / Oauth2 token endpoint, and issue corresponding access / id tokens, for the user the assertion was issued for. Any example workign configuration highly appreciated.

Regards,
Chris

lgazo · October 9, 2020, 1:14pm

If I take a look on supported grant types in the introspection, saml2-bearer is not there. Is it even supported somehow?

ionm · February 16, 2021, 3:45pm

I am looking for something similar, I have a angular client secured with SAML using a REST service, I would need to get the tokens to be able to authenticate against the REST based on the SAML assertion.

Any of you found the solution to this?
Would be greatly appreciated.
Thanks,
Ion

nishanthreddy · November 17, 2021, 10:38am

Hi All,

  Any of you found any solution to this? If yes, could you please share the details?

Thanks,
Nishanth

Topic		Replies	Views
"SAML 2.0 Bearer / Access Token Assertion Grant / Flow " - Does Keycloak support this Getting advice authentication , saml	0	383	January 17, 2024
SAML Bearer Assertion Flow Getting advice authentication , saml	0	432	June 5, 2023
SAML 2.0 Bearer Assertion Flow for OAuth 2.0 Configuring the server oidc , saml	0	427	January 17, 2021
RFC 7522 Support? Configuring the server authentication	2	1237	June 2, 2022
SAML2 Bearer Assertion Configuring the server	1	656	November 3, 2020

SAML Bearer Assertion Flow - how to setup Keycloak to issue tokens based on SAML assertion

Related topics