We provide a sample application that you can use to demonstrate SAML-based Single-Sign-On with the AS Java. The application uses the following building blocks:
SAML Test Application Services and Modules
Service or Module | Service Path or Module Name |
---|---|
Source site application |
/samlssodemo_source/source |
Destination site application |
/samplssodemo_dest/destination |
Automatic set-up application |
/samlssodemo_source/setup |
Sample mapping module Note
We recommend that you use this module for testing purposes only. |
com.sap.security.core.server.saml.app.ssotest.dest.SAMLMappingModule |
The set-up service automatically creates the users needed to demonstrate SAML-based Single Sign-On and assigns them the corresponding roles.
Each of the services or modules are responsible for the following activities:
Using this application, you specify the information that to be contained in the SAML assertion for the user (user ID and the authentication method used) and the destination URL to which the user's Web browser is to be redirected. Alternatively, you can let the system derive this data from the current user session.
For the test application, you can enter the user information manually. In a productive SAML assertion provider, this information is always determined from the security session of the source site.
This application is the requested resource at the destination site.
Using this application, you can set up your AS Java for using the test application. It creates the necessary users, assigns required roles and configures the destination site's login module stacks.
The use of this module is deprecated. For scenarios where the AS Java uses an AS ABAP user data source, we recommend that you use the mapping functions for the AS ABAP.
For more information, see: