Reputation: 457
WSO2 Identity Server supports service provider initiated SSO in SAML?
I found docs about IDP intitiated SSO in WSO2 IS. But haven't found anything about service provider initiated SSO.
Consider the scenario in which a local IS is used as a service provider which is connected to several externally hosted SAML IDP for outbound authentication.
Am I able to trigger a SP initiated login to one specific external IDP with a static link? Ideally with a relay state attribute which is evaluated after successful SAML sign on process.
I am using WSO2 IS 5.0.0 - but hints for 5.1.0 would also be appreciated.
Upvotes: 0
Views: 595
Answers (2)
Reputation: 11
IDP initiated login.
https://localhost:9443/samlsso?spEntityID=(Your SP Issuer ID)&fidp=(Your Home Realm Identifier if you have multiple IDP's)
https://localhost:9443/samlsso?spEntityID=myspissueid&fidp=myidp
OR If you only have one IDP or don't need to skip selection page. https://localhost:9443/samlsso?spEntityID=myspissueid
I believe if you get the fidp parameter in the SAML authnrequest then that will do the trick for the SP initiated one.
Upvotes: 1
Reputation: 1
considering IDP is running over localhost
IDP init SSO : https://localhost:9443/samlsso?spEntityID=yourSPEntityName
SP init SSO: https://localhost:9443/samlsso
Upvotes: 0
Related Questions
- wso2 - Does wso2 identity server support IDP initiated logout from federated IDP?
- WSO2 identiy server - How to map a User Store to a service provider for Authentication?
- How to maintain state parameter in Identity Provider (IdP) initiated SAML sso?
- WSO2 Idp initiated SSO
- SAML2.0 SSO with the WSO2 Identity Server?