2.4.2. eXo Platform as SAML2 IDP

Warning

You are looking at documentation for an older release. Not what you want? See the current release documentation.

In JBoss only

  1. Install the SAML2 add-on in the eXo Platform package named $PLATFORM_IDP, as in Step 1 of eXo Platform as SAML2 SP:

    ./addon install exo-saml
  2. Open the file $PLATFORM_IDP/standalone/configuration/gatein/exo.properties If you find the file exo-samples.properties, rename it to exo.properties.

    Update these configurations or add them if they do not exist:

    # SSO
    gatein.sso.enabled=true
    gatein.sso.filter.login.enabled=false
    gatein.sso.filter.logout.enabled=false
    gatein.sso.filter.initiatelogin.enabled=false
    gatein.sso.filter.saml.idp.enabled=true
    gatein.sso.skip.jsp.redirection=false
    gatein.sso.saml.signature.ignore=true
    gatein.sso.saml.config.file=${exo.conf.dir}/saml2/picketlink-idp.xml
    gatein.sso.idp.url=http://www.idp.com:8087/portal/sso
    gatein.sso.sp.domains=sp.com
    gatein.sso.sp.host=www.sp.com
    # WARNING: This bundled keystore is only for testing purposes. You should generate and use your own keystore in production!
    gatein.sso.picketlink.keystore=${exo.conf.dir}/saml2/jbid_test_keystore.jks
    

    In which, gatein.sso.sp.domains is a comma-separated list of domains that will be trusted by this IDP. gatein.sso.sp.host accepts only one value here. If you want more SP applications, you need to manually edit the file $PLATFORM_IDP/standalone/configuration/gatein/saml2/picketlink-idp.xml.

  3. Start up the platform IDP with this command:

    cd $PLATFORM_IDP/bin

    then

    ./standalone.sh -b www.idp.com
Copyright ©. All rights reserved. eXo Platform SAS
blog comments powered byDisqus