OpenAM integration


Antonio Diaz Arroyo
 

Hello,
We are trying to integrate a Single Sign-On authentication from OpenAM into an application deployed on Cloud Foundry.
Does anyone know what would be the best approach to do this?

Thank you!


Sree Tummidi
 

You would need to set up Open AM as a SAML 2.0 Identity Provider and
provide the Identity Provider Metadata in the cf-manifest under
login->saml->providers section

login.saml.providers: description: "Contains a hash of SAML Identity
Providers, the key is the IDP Alias, followed by key/value pairs. To learn
more about how to setup a saml identity provider go to
https://simplesamlphp.org" example: my-identity-provider:
metadataTrustCheck: false idpMetadata:
http://my.identityprovider.com/saml2/idp/metadata.php nameID:
urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
assertionConsumerIndex: 0 signMetaData: false signRequest: false iconUrl:
https://my.identityprovider.com/icon.png showSamlLoginLink: true linkText:
Log in with My Saml Identity Provider


Refer to
https://github.com/cloudfoundry/uaa/blob/master/docs/login/OpenAM-README.md
for OpenAM configuration


Thanks,
Sree Tummidi
Sr. Product Manager
Identity - Pivotal Cloud Foundry

On Tue, Nov 3, 2015 at 12:25 AM, Antonio Diaz Arroyo <antonio.diaza(a)atos.net
wrote:
Hello,
We are trying to integrate a Single Sign-On authentication from OpenAM
into an application deployed on Cloud Foundry.
Does anyone know what would be the best approach to do this?

Thank you!


Antonio Diaz Arroyo
 

I will try, many thanks Sree!!