Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-38971

Add support SAML ForceAuthn, AuthnContextClassRef, custom EntityId, and session timeout

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Resolved (View Workflow)
    • Priority: Minor
    • Resolution: Fixed
    • Component/s: saml-plugin
    • Labels:
      None
    • Similar Issues:

      Description

      We have a deployment where we to use SAML ForceAuthn to force logins at our IdP, and AuthnContextClassRef to override the default authentication mechanism and force multi-factor authentication; we also need the sessions on Jenkins to be shorter than those on our IdP.

      We've implemented those changes to the plugin as optional advanced configuration options, and will submit a GitHub pull request.

        Attachments

          Issue Links

            Activity

            Hide
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Ivan Fernandez Calvo
            Path:
            src/main/java/org/jenkinsci/plugins/saml/SamlAdvancedConfiguration.java
            src/main/java/org/jenkinsci/plugins/saml/SamlAuthenticationToken.java
            src/main/java/org/jenkinsci/plugins/saml/SamlEncryptionData.java
            src/main/java/org/jenkinsci/plugins/saml/SamlSecurityRealm.java
            src/main/resources/org/jenkinsci/plugins/saml/SamlSecurityRealm/config.jelly
            src/main/webapp/help/advancedConfiguration.html
            src/main/webapp/help/authnContextClassRef.html
            src/main/webapp/help/forceAuthn.html
            src/main/webapp/help/maximumSessionLifetime.html
            src/main/webapp/help/spEntityId.html
            src/test/java/org/jenkinsci/plugins/saml/SamlSecurityRealmTest.java
            src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfiguration.zip
            src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationAdvancedConfiguration.zip
            src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationEncryptionData.zip
            src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationLowercase.zip
            src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationUppercase.zip
            http://jenkins-ci.org/commit/saml-plugin/8232c21d592b6176c8a421bbf6ba54f2eb9ed3d2
            Log:
            JENKINS-38971 Add support SAML ForceAuthn, AuthnContextClassRef, custom EntityId, and session timeout (#20)

            • added expirationTime to SamlAuthenticationToken
            • added advanced configuration support
            • integrated advanced configuration
            • Now passing the session to SamlAuthenticationToken
            • removing -SNAPSHOT for testing
            • Add support SAML ForceAuthn, AuthnContextClassRef, custom EntityId, and session timeout
            • configuration tests
            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Ivan Fernandez Calvo Path: src/main/java/org/jenkinsci/plugins/saml/SamlAdvancedConfiguration.java src/main/java/org/jenkinsci/plugins/saml/SamlAuthenticationToken.java src/main/java/org/jenkinsci/plugins/saml/SamlEncryptionData.java src/main/java/org/jenkinsci/plugins/saml/SamlSecurityRealm.java src/main/resources/org/jenkinsci/plugins/saml/SamlSecurityRealm/config.jelly src/main/webapp/help/advancedConfiguration.html src/main/webapp/help/authnContextClassRef.html src/main/webapp/help/forceAuthn.html src/main/webapp/help/maximumSessionLifetime.html src/main/webapp/help/spEntityId.html src/test/java/org/jenkinsci/plugins/saml/SamlSecurityRealmTest.java src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfiguration.zip src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationAdvancedConfiguration.zip src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationEncryptionData.zip src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationLowercase.zip src/test/resources/org/jenkinsci/plugins/saml/SamlSecurityRealmTest/testReadSimpleConfigurationUppercase.zip http://jenkins-ci.org/commit/saml-plugin/8232c21d592b6176c8a421bbf6ba54f2eb9ed3d2 Log: JENKINS-38971 Add support SAML ForceAuthn, AuthnContextClassRef, custom EntityId, and session timeout (#20) added expirationTime to SamlAuthenticationToken added advanced configuration support integrated advanced configuration Now passing the session to SamlAuthenticationToken removing -SNAPSHOT for testing Add support SAML ForceAuthn, AuthnContextClassRef, custom EntityId, and session timeout configuration tests
            Hide
            ifernandezcalvo Ivan Fernandez Calvo added a comment -

            released on SAML Plugin 0.14

            Show
            ifernandezcalvo Ivan Fernandez Calvo added a comment - released on SAML Plugin 0.14
            Hide
            ifernandezcalvo Ivan Fernandez Calvo added a comment -

            released on SAML Plugin 0.14

            Show
            ifernandezcalvo Ivan Fernandez Calvo added a comment - released on SAML Plugin 0.14

              People

              Assignee:
              ifernandezcalvo Ivan Fernandez Calvo
              Reporter:
              scottylogan Scotty Logan
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: