SAML 2
Has anyone implemented SAML 2 using Coldfusion?
We would be the service provider and the identity provider for a single sign-on (SSO).
Seeking any sample code, CFC or anything to help jump start the project!
Thanks
We would be the service provider and the identity provider for a single sign-on (SSO).
Seeking any sample code, CFC or anything to help jump start the project!
Thanks
Coast Line
Not exactly, you better try cfml slack channel, hopefully someone might have done it,
ASKER
Gurpreet, I have of course been searching. If you know of any code out there, I would very much appreciate a link to it.
@gdemaria - This is more of a proof of concept, but maybe you could leverage a JAVA object from within ColdFusion to implement SAML authentication... I leverage the IBM JT400 toolkit to perform database calls to DB2 on the iSeries.
Maybe you could leverage the open-source "onelogin" JAVA toolkit for SAML - https://developers.onelogin.com/saml
Regards,
LaJuan
Maybe you could leverage the open-source "onelogin" JAVA toolkit for SAML - https://developers.onelogin.com/saml
Regards,
LaJuan
ASKER
Lajuan,
Thanks for the response! What is oneLogin? Is that a propriety 3rd party or is it a generic implementation of SAML that anyone can use?
Thanks for the response! What is oneLogin? Is that a propriety 3rd party or is it a generic implementation of SAML that anyone can use?
@gdemaria - The toolkit is open-source (free) and they have a free "sso" product (no credit card required).
Click on the link for "compare plan details" - https://www.onelogin.com/product/pricing
Free - Developer Plan: https://www.onelogin.com/developer-signup
Regards,
LaJuan
Click on the link for "compare plan details" - https://www.onelogin.com/product/pricing
Free - Developer Plan: https://www.onelogin.com/developer-signup
Regards,
LaJuan
ASKER
Thank you again Lajuan - could you explain more about what oneLogin is? I was looking to code SSO using SAML for my own website. It seems like OneLogin would be a middle man? I have potentially hundreds or thousands of user, I don't want to pay oneLogin for each of those users. Am I misunderstanding what oneLogin is?
I am in search of coding SSO using SAML
I am in search of coding SSO using SAML
@gdemaria - You are correct OneLogin would essentially become your SSO identity provider (IdP) using the SAML standard.
Have you checked with your hosting provider regarding the availability of an (IdP) using SAML?
If you manage your own servers, there might be a way to act as your own identity provider. I'm assuming your users exist in a database or some directory - LDAP, AD, RADIUS, etc. It might be a good fit for you download and configure - https://www.shibboleth.net/index/ (open source software package for web single sign-on across or within organizational boundaries)
An example of integrating SAML with Shibboleth can be found here: https://iam.harvard.edu/resources/saml-shibboleth-integration.
Is this what you had in mind?
Have you checked with your hosting provider regarding the availability of an (IdP) using SAML?
If you manage your own servers, there might be a way to act as your own identity provider. I'm assuming your users exist in a database or some directory - LDAP, AD, RADIUS, etc. It might be a good fit for you download and configure - https://www.shibboleth.net/index/ (open source software package for web single sign-on across or within organizational boundaries)
An example of integrating SAML with Shibboleth can be found here: https://iam.harvard.edu/resources/saml-shibboleth-integration.
Is this what you had in mind?
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.