Saturday, July 14, 2007

Web-based Reference Implementation of SAML-based SSO for Google Apps

clipped from code.google.com

Web-based Reference Implementation of SAML-based SSO for Google Apps

This document describes the web-based reference implementation of a SAML-based single sign-on (SSO) service that logs users in to Google Apps. The web application is a Java application that generates and sends SAML requests, receives and parses SAML requests, calls a function to authenticate users, and then returns a SAML response to the user's browser. The browser must then send the SAML response on to the Assertion Consumer Service (ACS) URL to log the user into Google Apps. The identity provider can choose the appropriate mechanism to use to trigger the post of the SAML response, but possible solutions include a button that the user clicks or a JavaScript function.

  • SAML 2.0 - OASIS Security Services (SAML)
  • Java XML Digital Signatures - Article about signing XML files
  • The following references may help you to implement a SAML-based SSO service:

    0 comments: