Skip to content

SAML Authentication

SamlStep navigates the user to the SAP Cloud Platform Log On page in order to execute an IDP-based authentication. This step executes the same logic for both the onboard and restore scenarios. The result is persisted in both cases to the cookie store.

For the reset scenario, the cookie store is deleted.

(The iOS equivalent is SAMLAuthenticationStep.swift.)

Input Parameters

Mandatory input parameters:

  • onboardingParameters – This setting is provided on the flowContext typically by the WelcomeScreenStep.

Using SamlStep

  1. Initiate the step:

    1
      SamlStep samlStep = new SamlStep();
    
  2. Specify the execute method's FlowActionHandler parameter's "onFailure" and "onSuccess" behaviour:

     1
     2
     3
     4
     5
     6
     7
     8
     9
    10
    11
    12
      flowManagerService.execute(flow, flowContext,
                new FlowActionHandler() {
            @Override
            public void onFailure(Throwable t) {
              //error handling
            }
    
            @Override
            public void onSuccess(FlowContext result) {
              //read the result
            }
      });
    

Behaviour of SamlStep

This step sends a message for the SAMLAuthLauncher endpoint of the server specified by the onboarding parameters.

If there is no valid session in the cookie store of the device, then the step displays the UI of the foundation layer, which consists of a WebView where the answer of the IDP is displayed.

The end user can enter a username and password required for the server authentication.

After successful authentication, the session cookies are stored in the cookie store.