Comments (2)
scottbrady91
commented on June 11, 2024
Yes, by increasing the value of this property you will be able to fix your issue.
The value to use would depend on your use case, and yes, a longer value does create a security risk as it gives an attacker more time to steal SAML assertions and inject them into your app, maybe even replaying them.
If the user is going to be spending a lot of time registering in between the initial authentication request and signing in, I would recommend restarting the auth process.
from samples.saml2p.
Baranitharan84
commented on June 11, 2024
Thank you Scott.
We will try to keep that value as minimum as we can.
from samples.saml2p.
Related Issues (20)
- HttpPost Logout response HOT 1
- Where do I get a valid LicenseKey & Licensee HOT 3
- Saml2pAuthenticationOptions for dynamic schemes HOT 2
- OAEP and PKCS1 paddings support HOT 1
- Can we provide the username to ADFS via the SAML Auth Request? HOT 2
- Adding Extra Attribute for SAMLRequest HOT 3
- What is the difference between the projects? HOT 2
- SAML Authentication for REST APIs and SPA applications HOT 1
- Multi-tenant support HOT 1
- SAML unsigned request to IDP - WantAuthenticationRequestsSigned HOT 1
- invalid acs url reported HOT 1
- access_token is always null HOT 1
- user is not authenticated HOT 3
- SingleSignOnEndpoint with a question results in an invalid challenge URI HOT 1
- What's the URL for IdP-Init-SSO
- SamlConfigurationDbContext schema sample
- Incorrect SAML request URL with Idp URL contain querystring HOT 1
- Same issue SAMLRequest IssueInstant is in the future. ... with tolerance of 0 seconds HOT 1
- Getting error when single signon with HttpRedirect HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from samples.saml2p.