Reputation: 63
Change type of authentication using Spring Security SAML Extension
I've tested the Spring Security SAML Extension for integration in my project and it looks good for me. But I have one problem with this implementation: How can I change the authentication to a form based login?
I have an application with a login form. And the requirement is that the authentication goes against an Active Directory Federation Services. But up to now I found no way in the SAML Extension.
Sorry about this question, but my experience in Spring Security are not very good. I hope the someone here can help me in a simple way.
Best Regards Thomas
Upvotes: 0
Views: 636
Answers (1)
Reputation: 15533
The main point of federation protocols (like SAML) is that user's credentials are only used at the Identity Provider (= ADFS), and are not revealed to the Service Providers. In other words when using SAML you can't have a form login on your SP page.
If you want to combine multiple authentication methods - e.g. SAML + form login against local database, it is of course possible.
Upvotes: 2
Related Questions
- Customizing OpenSaml4AuthenticationProvider in Spring Security SAML2
- SAML2 Authentication with authorization based on SAML assertions
- Authentication using SAML in spring boot
- How to register AuthenticationSuccessHandler or SAMLRelayStateSuccessHandler in Spring Security's SAML extension?
- Spring Security SAML - how to configure client auth?
- Authenticate using SAML-based Basic Authentication?
- SPRING SAML Authentication not working
- how to configure both spring security basic authentication and SAML authentication using spring-sample example within same application
- How to use SPRING SAML EXTENSION to make our webapp as an identity provider?
- convert java webapp to use SAML2 authentication