i have an application that was developed using guice framework now I want to integrate it with okta configuring saml sso. I could not find the documentation or example
Related
I have an web application whcih allows only google users and uses spring-boot-starter-oauth2-client to obtain authentication. I want to integrate Google API into my application, but all examples using its onw Oath2 process to authenticate user. How can I reuse existing spring boot google login for interaction with google API services?
Thanks!
You have to use the spring-boot-starter-oauth2-client dependency that allows the client registration for oauth2 providers, but before that it's necessary the client-id and client-secret provided by your oauth2 provider (such google). Here's a nice guide of how do that.
Is it possible to configure my spring application (which runs on tomcat) as service provider in SAML integration, where identity provider is configured on jboss 7 server? We have several subsystems, integrated via picketlink and now I am struggling to integrate my spring application with them.
I wonder if you have some examples / tutorials on how such integration can be implemented.
Spring Security has a SAML extentions spring-security-saml There is also a sample included.
I am newbee with SAMLv2 and I need to integrate it on my webapp (acting like SP) running under spring 2.5.6.
All sample i could see are using spring 3 at minima, do you have example under spring 2.5.6 ?
I can't (due to time issue) migrate my SP to spring 3, any help would be very appreciated...
Thx
There are several resources that you can use as references:
Spring Security SAML Extension
Spring SAML Extension allows seamless inclusion of SAML 2.0 Service Provider capabilities in Spring applications. All products supporting SAML 2.0 in Identity Provider mode (e.g. ADFS 2.0, Shibboleth, OpenAM/OpenSSO, Ping Federate, Okta) can be used to connect with Spring SAML Extension.
Link: http://projects.spring.io/spring-security-saml/
Spring Boot-based sample Service Provider by using Spring Security SAML extension
Currently Spring Security SAML module doesn't provide a starter for Spring Boot. Moreover, its configuration is XML-based as of this writing. The aim of this project is to explain how to develop a Service Provider (SP) which uses Spring Boot (1.4.0.RELEASE) and Spring Security SAML Extension (1.0.2.RELEASE), by defining an annotation-based configuration (Java Configuration). Thymeleaf is also used as template engine.
Link:
https://github.com/vdenotaris/spring-boot-security-saml-sample
This project represents a complete implementation example of a SAML 2.0 Service Provider in Spring.
I am developing an application on Google App Engine in java. In this application I have to implement SSO using SAML2. My google app engine application will act as service provider and identity provider will be a separate server. I have just to write the SP side of SSO. I am new to SAML and did much google on SAML and come to basic flow of user authentication in SSO. I found opensaml library that can be used to handle SAML messages between Idp and SP. I also found Shibboleth which is the implementation of opensaml library. I am very confuse on the decision of choosing opensaml or Shibboleth. can anyone suggest me on choosing opensaml or Shibboleth and if some one have found any tutorial on SP implementation of SSO in Google app engine he can also share it.
You can embed Spring SAML Extension (product built on top of OpenSAML) into your application. It will enable you to act as a SAML 2.0 Service Provider.
You can see a working demo of such approach at http://saml-federation.appspot.com/ which shows a Spring SAML sample application connected to SSO Circle IDP.
Shibboleth doesn't provide a SAML SP component which can be embedded into applications. The Shibboleth SPs act as plugins to Apache or IIS web servers and cannot be used with Google App Engine.
You can also see the Spring SAML as an example of SAML 2.0 WebSSO implementation to follow in case you'd like to write it youself. Latest documentation is available in Spring repos, sources are at GitHub.
I am developing RESTFUL Java application in this i use JERSEY library. In my application i have to authenticate user with spring security OAuth 2.0 library. I am in need of both provider and client. I have searched lot in internet.
Can any one share a simple example or any nice tutorial with basic steps
Thanks in advance