|
UAA error: InResponseToField of the Response doesn't correspond to sent message
I've found the issue. The parameter servlet.idle-timeout was set to 60 seconds. That meant the session was removed after that timeout if there was no communication from the IdP. When eventually a SAML
I've found the issue. The parameter servlet.idle-timeout was set to 60 seconds. That meant the session was removed after that timeout if there was no communication from the IdP. When eventually a SAML
|
By
Enrique Cano
· #9261
·
|
|
UAA error: InResponseToField of the Response doesn't correspond to sent message
Hi I've got UAA connected to an Identity Provider using SAML. I've noticed that if the Identity Provider takes some time (in my case, 1 minute 40 seconds) in responding to the SAML request with a SAML
Hi I've got UAA connected to an Identity Provider using SAML. I've noticed that if the Identity Provider takes some time (in my case, 1 minute 40 seconds) in responding to the SAML request with a SAML
|
By
Enrique Cano
· #9259
·
|
|
Deploying UAA for external users
#uaa
#cf
I would expect you place a well hardened reverse proxy in front of your UAA, and that is what you use to control what is exposed to the outside world and what is not? Regards Enrique
I would expect you place a well hardened reverse proxy in front of your UAA, and that is what you use to control what is exposed to the outside world and what is not? Regards Enrique
|
By
Enrique Cano
· #9112
·
|
|
Is SAML configuration optional in UAA?
#uaa
Hi If we don't need to use the SAML protocol with UAA, do we really need to configure that section e.g. encryption keys? It seems UAA won't start if that section is empty. Thanks Enrique
Hi If we don't need to use the SAML protocol with UAA, do we really need to configure that section e.g. encryption keys? It seems UAA won't start if that section is empty. Thanks Enrique
|
By
Enrique Cano
· #9030
·
|
|
enable 2fa for UAA zone
Hi Dan Is the expectation then that we would integrate with the external IdP via SAML? Thanks Enrique
Hi Dan Is the expectation then that we would integrate with the external IdP via SAML? Thanks Enrique
|
By
Enrique Cano
· #8874
·
|
|
Windows versions supported by UAA
#uaa
Thanks for your reply, Daniel. No concerns, other than Windows doesn't seem to be mentioned much in the documentation. Just wanted to make sure we can run it on Windows, that was all. Thanks! Enrique
Thanks for your reply, Daniel. No concerns, other than Windows doesn't seem to be mentioned much in the documentation. Just wanted to make sure we can run it on Windows, that was all. Thanks! Enrique
|
By
Enrique Cano
· #8739
·
|
|
Windows versions supported by UAA
#uaa
Hi community Is UAA supported on Microsoft Windows, and if so, what versions? Many thanks in advance Enrique
Hi community Is UAA supported on Microsoft Windows, and if so, what versions? Many thanks in advance Enrique
|
By
Enrique Cano
· #8737
·
|
|
Running UAA on Kubernetes behind TLS-enabled ingress controller
#uaa
Thank you, Filip. We are not using uaa-release, and we can control the protocol (https). Our issue is that the port number is forced to be 443 when we don't want that to happen. Regards Enrique
Thank you, Filip. We are not using uaa-release, and we can control the protocol (https). Our issue is that the port number is forced to be 443 when we don't want that to happen. Regards Enrique
|
By
Enrique Cano
· #8684
·
|
|
Running UAA on Kubernetes behind TLS-enabled ingress controller
#uaa
Hi We are running UAA behind an ingress controller on Kubernetes. The connection to the ingress controller is https on a port other than 443 e.g. 8443. The connection to UAA pod is http. The issue we
Hi We are running UAA behind an ingress controller on Kubernetes. The connection to the ingress controller is https on a port other than 443 e.g. 8443. The connection to UAA pod is http. The issue we
|
By
Enrique Cano
· #8677
·
|
|
Integration of UAA with Kerberos
#uaa
#kerberos
Thanks, Camilo, that's very interesting and helpful. So, it's possible to do it, we just need to have a SAML provider integrated with Kerberos, and then we can integrate UAA with that SAML provider, i
Thanks, Camilo, that's very interesting and helpful. So, it's possible to do it, we just need to have a SAML provider integrated with Kerberos, and then we can integrate UAA with that SAML provider, i
|
By
Enrique Cano
· #8622
·
|
|
Integration of UAA with Kerberos
#uaa
#kerberos
Hi Has anyone got any experience integrating UAA with Kerberos? Basically, we are trying to obtain a bearer token from UAA by somehow providing a Kerberos ticket instead of client or user credentials.
Hi Has anyone got any experience integrating UAA with Kerberos? Basically, we are trying to obtain a bearer token from UAA by somehow providing a Kerberos ticket instead of client or user credentials.
|
By
Enrique Cano
· #8613
·
|
|
UAA and SQL injections
#cf
Hi Has CF UAA code been developed in a way that is protected against potential SQL injections? Thanks Enrique
Hi Has CF UAA code been developed in a way that is protected against potential SQL injections? Thanks Enrique
|
By
Enrique Cano
· #8078
·
|
|
Database support for UAA
I understand that UAA can run against MySQL and Postgres as the backend database, and Oracle was considered in the past but was discarded due to the enterprise licensing model (https://github.com/clou
I understand that UAA can run against MySQL and Postgres as the backend database, and Oracle was considered in the past but was discarded due to the enterprise licensing model (https://github.com/clou
|
By
Enrique Cano
· #8046
·
|