Valerio Vaudi
Reputation: 4532
WSO2 SAML api authentication
I need to expose an api via WSO2 Api-Manager and I want protect my api not with oAuth2 but via SAML autentication, actually I need to use the APi-Manager as SAML SP. Therefore I need protect the may api and if a user isn't authenticated on SAML IDP presents the SAML IDP login page. Is it possible do that with WSO2 Api-Manger or the SAML OSS is releated only for Web SSO for /carbon, /pubblish and /store web app?
thank you for the help!
Upvotes: 0
Views: 237
Answers (1)
Bee
Reputation: 12512
OAuth2 is for authorization. You can use SAML for authentication and use APIM's SAML grant type to get an OAuth2 token using the SAML assertion.
https://docs.wso2.com/display/AM210/SAML+Extension+Grant
Upvotes: 2
Related Questions
- WSO2IS 5.3.0 - Federated SAML & Enable Authentication Request Signing
- Spring SAML wso2
- How to configure WSO2 API Manager to an external Identity Provider?
- WSO2 Identity Server - code for commonauth and samlsso webapps
- WSO2 IS 5.0 sp1 Session Management
- SAML extension grant type configuration of wso2 api manager
- WSO2 identity server api
- WSO2 Identity Server obtain SAML token for rest call
- How to create authentication API in WSO2 IS
- WSO2 Identity Server 4 SAML metedata