Skip to content

SAML support is overly vague #44

New issue
New issue
Open
Open
SAML support is overly vague#44
@sdesen

Description

@sdesen
sdesen
opened on Sep 9, 2025

SAML implementations should include security best practices due to variable nature of NameID
Refresh tokens are related because SAML assertions are more short lived than id_tokens, commonly, causing the client to execute all id-jag requests within its lifetime.
Additionally it should be clear SAML can only be support for requesting apps, as the resource apps must implement Oauth (maybe that is overly obvious, though)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions