I am writing an application which is supposed to authenticate using Single Sign On and SAML. The Java SDK documentation states that it can be achieved assuming I have a mechanism for obtaining a SAML assertion from my IdP.
If the account is configured for SAML, then the client will be redirected to the SAML IDP using the SAML passive flow - authentication will be performed at the IDP domain instead. The IDP callback will be on the API Acs, which will return a Session object if authentication is accepted.
oAuthService.authenticate (subdomain, apiControlPlane, samlAssertion);Does this mean I have to do a SAML request- and response using openSAML or some other library in order to obtain the samlAssertion, or can it be done in a more simple manner? The section below is from the Sessions:Login-documentation - can I use this mechanism in order to do Single Sign On from my application? Any help is appreciated.
If the account is configured for SAML, then the client will be redirected to the SAML IDP using the SAML passive flow - authentication will be performed at the IDP domain instead. The IDP callback will be on the API Acs, which will return a Session object if authentication is accepted.