• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Tim Cooke
  • paul wheaton
  • Liutauras Vilda
  • Ron McLeod
Sheriffs:
  • Jeanne Boyarsky
  • Devaka Cooray
  • Paul Clapham
Saloon Keepers:
  • Scott Selikoff
  • Tim Holloway
  • Piet Souris
  • Mikalai Zaikin
  • Frits Walraven
Bartenders:
  • Stephan van Hulst
  • Carey Brown

SAML

 
Ranch Hand
Posts: 59
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi all,

I am new to SAML and web service.
I need to implement SSO in our application through SAML. Can any one please explain how to achieve this with basic flow (step by step)

Thanks in advance.

Regards,
-Balaji.S
 
Ranch Hand
Posts: 2198
1
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi!
SAML is, as the name implies, a language (Security Assertion Markup Language). You need some tool that uses this language, in order to implement SSO in your own application in a reasonable amount of time.
I would recommend you to take a look at one or more of the following:
Shibboleth, an open source SSO solution based on SAML: http://shibboleth.internet2.edu/
Oracle OpenSSO (formerly Sun Java System Access Manager): http://www.oracle.com/technetwork/testcontent/opensso-091890.html
JBoss SSO: http://www.jboss.org/jbosssso
Best wishes!
 
Greenhorn
Posts: 2
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
We (Ping Identity) have tons of information about SAML in the Knowledge Center tab on our Web site, pingidentity.com.

We have a Java integration kit that makes it easy to federate directly from a Java Web app, using a simple API. Lots of source code and sample apps are included for both the identity provider role and the service provider role. This makes it easy to understand the SAML protocol flow for browser SSO and for WS-Security. You can download a copy of the PingFederate server and the integration kit and get a 30-day license, all for free. So even if you have no interest in purchasing our product, you can still learn about SAML. Working through our Getting Started doc and the sample apps from the Java integration kit are in fact how I learned SAML.

If you are looking for code, you can find open-source code at sourceid.org.

Helpful product plug: If you are doing this for your own edification, go for it. If you are doing it for business purposes, consider our product, PingFederate. It is almost always cheaper than the cost and aggravation of rolling your own. And we can usually help you get your first connection working in 2 hours. We didn't invent SAML federation, but we have certainly perfected it.

 
What's that smell? Hey, sniff this tiny ad:
Smokeless wood heat with a rocket mass heater
https://woodheat.net
reply
    Bookmark Topic Watch Topic
  • New Topic