Not sure at 100%, but I think that for both values you can just use URI when you want Salesforce to redirect after authentication. So something like (replace stuff in braces with values for your environment):
http://localhost:8080/auth/realms/{your-realm}/broker/{your-identity-provider-alis}/endpoint

For some hints, you can see picketlink documentation for Salesforce integration here https://docs.jboss.org/author/display/PLINK/Picketlink+as+SP,+Salesforce+as+IDP . I assume many steps are similar for Keycloak like for Picketlink.

Marek

On 30.4.2015 08:45, Henk Laracker wrote:
Hi,

I like to use Salesforce as Identity Provider, the metadata provided by salesforce can be imported. 
But I need to specify the Service Provider in salesforce, I have to fill in a couple of fields, but two of them I don’t understand (and are mandatory). Does someone have any clue

  1. entity id , remark of salesforce : get this value from your serviceprovider 
  2. ACS URL, remark of slaesforce : The assertion consumer service. Get this value from your service provider.
I have tried a lot of values but every-time I click the saml button on my app, it redirects to salesforce but I get a page with the error : Error: Unable to resolve request into a Service Provider

Henk


_______________________________________________
keycloak-user mailing list
keycloak-user@lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-user