Hi Samuel, Please add this to the IS-4.6.0 docs under SAML SSO. The above descriptions should be enough for starters.
On Sun, Nov 10, 2013 at 12:12 AM, Johann Nallathamby <joh...@wso2.com>wrote: > Hi, > > IdP Initiated SSO support has been added with r190585. > > To enable IdP Initiated SSO for a service provider click on "Enable IdP > Initiated SSO" as shown in the attached screen shot. > > To initiate IdP Initiated SSO you need to perform a HTTP GET/POST to the > following URL (assume the registered service provider Issuer ID is > travelocity.com) > > https://localhost:9443/samlsso?spEntityID=travelocity.com > > This request will authenticate the user and redirect him to the registered > Assertion Consumer URL. Optionally you can send in a RelayState parameter > as follows: > > > https://localhost:9443/samlsso?spEntityID=travelocity.com&RelayState=http://localhost:8080/travelocity.com/my-home.jsp > > This request will authenticate the user and redirect him to the URL in the > RelayState parameter. > > To Note: > Either you could have SP Initiated SSO only, or SP Initiated SSO and IdP > Initiated SSO. You can't have IdP initiated SSO only. By design SP > Initiated SSO is more restrictive and secure. A service provider is allowed > to do IdP Initiated SSO would automatically imply he is allowed to do SP > Initiated SSO as well. > > -- > Thanks & Regards, > > *Johann Dilantha Nallathamby* > Senior Software Engineer > Integration Technologies Team > WSO2, Inc. > lean.enterprise.middleware > > Mobile - *+94777776950* > Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>* > -- Thanks & Regards, *Johann Dilantha Nallathamby* Senior Software Engineer Integration Technologies Team WSO2, Inc. lean.enterprise.middleware Mobile - *+94777776950* Blog - *http://nallaa.wordpress.com <http://nallaa.wordpress.com>*
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
