I am working with WSO2 Identity Manager (IM) to implement Single Sign On.
The workflow is:
This workflow is documented in a web page-based application with the following code snippet:
Since I am using SmartGWT my login is a SmartGWT application running on the browser. A log in request results an RPC request.
My questions:
The workflow is:
- User logs on with userid/password
- Server application creates an authorization message and redirects the web browser to the WSO2 IM
- The IM responds with an authorization message
- If authorization is validated the server application allows the user to proceed.
This workflow is documented in a web page-based application with the following code snippet:
Code:
public class Resource extends HttpServlet { private static SamlConsumer consumer = new SamlConsumer(); public void doGet(HttpServletRequest request, HttpServletResponse response) { requestMessage = consumer.buildRequestMessage(); response.sendRedirect(requestMessage); } public void doPost(HttpServletRequest request, HttpServletResponse response) { responseMessage = request.getParameter("SAMLResponse").toString(); result = consumer.processResponseMessage(responseMessage); } }
My questions:
- Usering SmartGWT how do I redirect the browser with the SAML authentication message? Do I return the authorization request message to the SmartGWT application from the RPC and use Window.Location.replace(location)?
- If I do #1 how do I get the result of the post from the IM?
Comment