JAX-RS: SAML Web SSO
Introduction
SSO is about a user having to sign in only once when interacting with a custom web application which may offer of a number of individual endpoints.
CXF 2.6.1 introduces a comprehensive service provider (SP) support for the SAML Web SSO profile. This page also offers a good overview of the profile.
HTTP Redirect(via GET) and POST bindings are supported. The module has been tested against many IDP providers and is easily configurable.
The following components are required to get SSO supported:
- Identity Provider (IDP) supporting SAML SSO
- Request Assertion Consumer Service (RACS)
- Application Security Filter
- SSO State Provider
The following sections will describe these components in more details
Maven dependencies
<dependency> <groupId>org.apache.cxf</groupId> <artifactId>cxf-rt-rs-security-sso-saml</artifactId> <version>2.6.1</version> </dependency>