Forum Discussion

Nimbostratus

Sep 04, 2013

Manipulate SAML assertion data

I am new to F5 technology so I am not sure if this is areasonable question or not. I wondered if it is possible to collect all the SAML data from the ID provider and then post that XML data to ...

Employee

Sep 04, 2013

Here's an idea followed by some additional questions. On successful validation as the SP, the assertion content is actually stored in a session variable. I don't have it in front of me, but it's something like "session.saml.assertion". This is the decoded XML. So then there are a lot of options for what to do with that. And now the questions:

Do you need to send this assertion data as an actual (encoded) assertion, or maybe something simpler like an HTTP header?
If the former, do you need it in a POST request as the first request to the site and using a specific (potentially different) entityID/app URL?
If yes to 2, do you need to validate the internal SP's response?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Manipulate SAML assertion data

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

F5 NGINX API Gateway: Simplify Response Manipulation

AD attributes in SAML assertion

SAML - LTM in front of SP

Error Encrypting a SAML Assertion from APM

RADIUS authentication packet manipulation library

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS