Hi Tharindu, Found your blog [1] for salesforce configuration. I think this should go in to docs.
[1] http://www.securityinternal.com/2017/09/using-salesforce-as-identity-provider.html Thanks, On Tue, Nov 14, 2017 at 1:34 PM, Ushani Balasooriya <[email protected]> wrote: > Hi Tharindu/Godwin, > > Can you please guide me to a doc where I can find configuring WSO2 IS as > an IDP using SAML? I found this [1] doc. > Is it the correct doc or appreciate if you can point me to relevant doc. > (IS or Salesforce) > > [1] https://docs.wso2.com/display/IS530/Configuring+ > SAML2+Single-Sign-On+Across+Different+WSO2+Products > > > Thanks, > > On Tue, Nov 14, 2017 at 11:59 AM, Ushani Balasooriya <[email protected]> > wrote: > >> Thanks a lot Tharindu and Godwin for the clarification and examples. I >> will try one of those. >> >> >> >> On Tue, Nov 14, 2017 at 11:56 AM, Tharindu Edirisinghe < >> [email protected]> wrote: >> >>> Hi Ushani, >>> >>> I think these are the correct ways to do this. I don't think you need to >>> do any config for resident IDP. >>> >>> *Use Case 1 * >>> >>> travelocity sample --> IS (the protocol is SAML) >>> IS --> External IDP (any external IDP that supports OpenIDConnect/OAuth) >>> - You can use Facebook federated authenticator here (or another IS) >>> >>> >>> >>> *Use Case 2* >>> playground sample --> IS (the protocol is OAuth) >>> IS --> External IDP (any external IDP that supports SAML) - You can use >>> salesforce for this (or another IS) >>> >>> Thanks, >>> TharinduE >>> >>> >>> On Tue, Nov 14, 2017 at 11:45 AM, Ushani Balasooriya <[email protected]> >>> wrote: >>> >>>> Hi IAM Team, >>>> >>>> I am trying to implement a sample using travelocity web app which can >>>> be configured for identity federation between sp and IDP with incompatible >>>> Identity federation protocols. >>>> >>>> My Pattern is "*Identity federation between service providers and >>>> identity providers with incompatible identity federation protocols*" >>>> as mentioned in Solution 11 of this blog post [1]. >>>> >>>> In order to try this I need to find out the correct and valid use cases. >>>> >>>> Use Case 1 - Configure travelocity web app as a SP which uses SAML and >>>> WSO2 IS resident IDP which uses Oauth. - This is Valid obviously and >>>> curently I have configured it as explained in our documents. >>>> >>>> >>>> My question is on Use Case 2. >>>> >>>> *Use case 2* - Configure a service provider which uses Oauth and IDP >>>> which uses SAML. >>>> >>>> I feel above use case is not valid. >>>> >>>> Please correct me if I am wrong. If the use case 2 is valid, please >>>> explain me it with a valid scenario which uses Oauth as SP and SAML as IDP. >>>> >>>> If the above use case2 is not valid, can you please let me know what >>>> are the possible and valid use cases which are relevant for the pattern >>>> mentioned in the blog considering the different protocols such as SAML, >>>> Oauth, Passive STS. >>>> >>>> [1] https://medium.facilelogin.com/thirty-solution-patterns- >>>> with-the-wso2-identity-server-16f9fd0c0389 >>>> >>>> Appreciate your response. >>>> >>>> Thanks, >>>> -- >>>> *Ushani Balasooriya* >>>> Associate Technical Lead - EE; >>>> WSO2 Inc; http://www.wso2.com/. >>>> Mobile; +94772636796 >>>> >>>> >>> >>> >>> -- >>> >>> Tharindu Edirisinghe >>> Senior Software Engineer | WSO2 Inc >>> Platform Security Team >>> Blog : http://tharindue.blogspot.com >>> mobile : +94 775181586 <+94%2077%20518%201586> >>> >> >> >> >> -- >> *Ushani Balasooriya* >> Associate Technical Lead - EE; >> WSO2 Inc; http://www.wso2.com/. >> Mobile; +94772636796 >> >> > > > -- > *Ushani Balasooriya* > Associate Technical Lead - EE; > WSO2 Inc; http://www.wso2.com/. > Mobile; +94772636796 > > -- *Ushani Balasooriya* Associate Technical Lead - EE; WSO2 Inc; http://www.wso2.com/. Mobile; +94772636796
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
