java - IDP Initiated SSO Implementation in existing App -


i have existing application , of sudden have been given task implement idp initiated sso. there url idp clicking on asks me login idp provided credentials, after success login route moves our application , task start identify user , give proper access. have certificate provided our idp. how can achieve this? application spring mvc java application.i using jboss 7. havent done similar thing before. can please give step step clear picture on this? saw spring saml extension couldnt understand integrate existing app. in regard highly appreciated.

idp-initiated sso

idp-initiated sso post binding

  1. if user not have valid local security context @ idp, @ point user challenged supply credentials idp site, idp.example.org.
  2. the user provides valid credentials , local logon security context created user @ idp.
  3. the user selects menu option or link on idp request access sp web site, sp.example.com. causes idp's single sign-on service called.
  4. the single sign-on service builds saml assertion representing user's logon security context. since post binding going used, assertion digitally signed before placed within saml message. message placed within html form hidden form control named samlresponse. (if convention identifying specific application resource @ sp supported @ idp , sp, resource url @ sp encoded form using hidden form control named relaystate.) single sign-on service sends html form browser in http response. ease-of-use purposes, html form typically contain script code automatically post form destination site.
  5. the browser, due either user action or execution of “auto-submit” script, issues http post request send form sp's assertion consumer service. service provider's assertion consumer service obtains message html form processing. digital signature on saml assertion must first validated , assertion contents processed in order create local logon security context user @ sp. once completes, sp retrieves relaystate data (if any) determine desired application resource url , sends http redirect response browser directing access requested resource (not shown).
  6. an access check made establish whether user has correct authorization access resource. if access check passes, resource returned browser.

see saml-tech-overview-2.0

so if implementing sp, have follow steps 5 , 6 otherwise 1 - 4.

for implementation use opensaml if not working spring saml extension.


Comments

Post a Comment

Popular posts from this blog

php - How to add and update images or image url in Volusion using Volusion API -

actually have store importing products store product data insert , update image or image url not insert , update. this xml code name datapro.txt. <products_joined> <productcode>3710_012t</productcode> <vendor_partno>eah5450silent/di/1gd3(lp)</vendor_partno> <productname>test product ta</productname> <hideproduct>n</hideproduct> <stockstatus>20</stockstatus> <lastmodified>1/5/2016 10:25:00 am</lastmodified> <lastmodby>2</lastmodby> <productweight>0.9</productweight> <productprice>100</productprice> <productmanufacturer>asus tek</productmanufacturer> <vendor_price>32.69</vendor_price> <numproductssharingstock>0</numproductssharingstock> <categoryids>107</categoryids> <producturl>http://tebkq.mvlce.servertrust.com/productdetails.asp?productcode=3710_012t</producturl>
Read more

javascript - IE9 error '$'is not defined -

Image
<!--[if lte ie 9]><html class="lte9"><![endif]--><!--[if gt ie 9]><html><![endif]--> <!--[if !ie]><!--> <html> <!--<![endif]--> blah blah <script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.1/jquery.min.js"></script> <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js"></script> <script src="{{ asset('js/mypage.js') }}" type="text/javascript"></script> </body> </html> when load page, ie9 brings error '$' not defined . how can solve error? +++ mypage.js $(function(){ //when load page, //ie9 tag not moving. $(window).load(function() { $('div.mask').hide(); }); // when click , willshow show. //for not ie 9 if (!$('html').hasclass('lte9')) { var = $('ul.about > li > span.activebtn');
Read more