[keycloak-user] Fwd: any reference document on Keycloak SAML SP configuration
Bill Burke
bburke at redhat.com
Thu Nov 26 09:18:20 EST 2015
How are you building your war that uses the filter? What app server are
you deploying it? As stated in the docs, you need this dependency and
this should bring in all the additional dependencies this artifact has:
<dependency>
<groupId>org.keycloak</groupId>
<artifactId>keycloak-saml-servlet-filter-adapter</artifactId>
<version>1.6.1.Final</version>
</dependency>
Its a USA holiday today and tomorrow. I'll look into it maybe tomorrow
if I get home early, definitely monday. There are examples, but not for
the filter, just the adapter. examples/saml/...
On 11/26/2015 5:48 AM, Arulkumar Ponnusamy wrote:
> Hi Stian,
>
> Do you mean SAML Identity Provider or Service Provider? With Keycloak,
> Keycloak server is the Identity Provider and you configure/tweak it
> through the admin console.
> [Arul] I meant Service provider and not Identity provider.
>
> After some play with the web.xml, I am getting different error,
> *java.lang.ClassNotFoundException:
> org.keycloak.adapters.servlet.ServletHttpFacade. *I don't find this file
> in keycloak repository too.
>
> This file is used in SAMLFilter class.**any idea whether this is defect
> or where i can find this. *
>
> *
>
>
> On Thu, Nov 26, 2015 at 3:05 PM, Stian Thorgersen <sthorger at redhat.com
> <mailto:sthorger at redhat.com>> wrote:
>
>
>
> On 26 November 2015 at 09:28, Arulkumar Ponnusamy
> <parul.com at gmail.com <mailto:parul.com at gmail.com>> wrote:
>
> Hi Stian,
> Thanks for your response. Yes. I followed the same. I followed
> the instruction of Chapter-7 Java servlet Filter Adapter. as
> specified I added the SAMLFilter class in filter mapping of my
> web.xml.
>
>
> We have a few examples for SAML in our examples download. Did you
> look at those?
>
>
> In picketlink, we have handler and Listener which makes our
> application as SAML provider. Picketlink also has lot of sample
> project which we can try/tweak as per our need. However in
> keycloak, i see neither of them.
>
>
> Do you mean SAML Identity Provider or Service Provider? With
> Keycloak, Keycloak server is the Identity Provider and you
> configure/tweak it through the admin console.
>
>
>
> On Thu, Nov 26, 2015 at 1:28 PM, Stian Thorgersen
> <sthorger at redhat.com <mailto:sthorger at redhat.com>> wrote:
>
> Documentation is here
> http://keycloak.github.io/docs/userguide/saml-client-adapter/html/index.html
> - did you read that?
>
> On 26 November 2015 at 08:30, Arulkumar Ponnusamy
> <parul.com at gmail.com <mailto:parul.com at gmail.com>> wrote:
>
> I want to implement the SAML Service provider(SP) for my
> application. I used picketlink earlier (servlet filter)
> to configure my application as SAML SP. However, when I
> tried the same with Keycloak, it is not working as
> expected. There is no proper documentation/example on
> how keycloak saml SP configuration has to be done.
>
> I did the following things.
> 1. Copied all the jar(keycloak-saml-eap6-adapter-dist)
> into my jboss/lib directory
> 2. Configured the security domain as below
> <login-module
> code="org.keycloak.adapters.jboss.KeycloakLoginModule"
> flag="required"/>
> 3. I built the keycloak saml example
> "redirect-with-signature" and deployed.
> 4. I am using the picketlink as my IDP.
> 5. The redirect does not redirecting to my picketlink IDP.
>
> Can some one tell how to configure keycloak SAML SP.?
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> <mailto:keycloak-user at lists.jboss.org>
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
>
>
>
>
>
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com
More information about the keycloak-user
mailing list