Re: [keycloak-user] IDP SAMLV2.0 with Salesforce

If you get any errors about the entityid, try the below http://localhost:8080/auth/realms/ <http://localhost:8080/auth/realms/%7Byour-realm>{your-realm <http://localhost:8080/auth/realms/%7Byour-realm>} Marek/Dev team - Despite spending a good amount of time on KC, even I find it difficult to make things work as the end points are not documented. Is that something that can be done before you go for the next release? Thanks, Raghu ------------------------------------------------------------------------ *From:* Marek Posolda <mposolda(a)redhat.com&gt; *To:* Henk Laracker <Henk.Laracker(a)planonsoftware.com>; &quot;keycloak-user(a)lists.jboss.org&quot; <keycloak-user(a)lists.jboss.org&gt; *Sent:* Thursday, April 30, 2015 4:49 AM *Subject:* Re: [keycloak-user] IDP SAMLV2.0 with Salesforce Not sure at 100%, but I think that for both values you can just use URI when you want Salesforce to redirect after authentication. So something like (replace stuff in braces with values for your environment): http://localhost:8080/auth/realms/{your-realm}/broker/{your-identity-prov... For some hints, you can see picketlink documentation for Salesforce integration here https://docs.jboss.org/author/display/PLINK/Picketlink+as+SP,+Salesforce+... . I assume many steps are similar for Keycloak like for Picketlink. Marek On 30.4.2015 08:45, Henk Laracker wrote: Hi, I like to use Salesforce as Identity Provider, the metadata provided by salesforce can be imported. But I need to specify the Service Provider in salesforce, I have to fill in a couple of fields, but two of them I don’t understand (and are mandatory). Does someone have any clue 1. entity id , remark of salesforce : get this value from your serviceprovider 2. ACS URL, remark of slaesforce : The assertion consumer service. Get this value from your service provider. I have tried a lot of values but every-time I click the saml button on my app, it redirects to salesforce but I get a page with the error : Error: Unable to resolve request into a Service Provider Henk _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org <mailto:keycloak-user@lists.jboss.org> https://lists.jboss.org/mailman/listinfo/keycloak-user _______________________________________________ keycloak-user mailing list keycloak-user(a)lists.jboss.org <mailto:keycloak-user@lists.jboss.org> https://lists.jboss.org/mailman/listinfo/keycloak-user