Securing SAML Apps

sriyanto · March 18, 2022, 4:42pm

Hi There,

Currently I’m doing PoC using Keycloak as my IdP and snipeIT as my SP with SAML authentication.
I had done testing snipeIT SAML with Google SAML it work fine, but when I tried use Keycloak as my IdP I’ve got error message “500 Server Error”.

As initial step I had import the metadata from my IdP (Keycloak) to my SP (SnipeIT)
Import the Metadata of my SP (SnipeIT) in Keycloak client

During I login to my SP using SAML method, it bring me to Keycloak login page which work fine.
But after I authenticate it bring me to error page “500 Server Error”

Much appreciate if there anyone can advise me how to configure the SAML client properly and resolve this issue.

Thanks in advance

Srinivasan · October 12, 2022, 12:26pm

I am also facing the same issue. Did you find any solution?

kvtobola · March 8, 2023, 6:00pm

I am facing the same issue too. Were either of you able to find a solution?

skwv · May 31, 2023, 1:12pm

Hello,

I was able to get it working by disabling the option " Signing keys config" inside the “Keys” tab inside keycloak and setting “security.authnRequestsSigned=false” inside the snipeit application. The option “Sign documents” inside keycloak has to stay enabled. Then login works.
This is surely not a wanted state but I did not got farther.

Edit: After you get it working and get an error 500 follow the instructions here: Keycloak SAML: Found an Attribute element with duplicated Name · Issue #222 · nextcloud/user_saml · GitHub

Also the logout does not work on the first try, logout again and it works.