All Questions
14
questions
0
votes
1
answer
591
views
How can I login into web application with SAML using system credentials in java
once I click on URL of web application it needs to authenticate using my system credential and login into the web app.
Trying to achieve it in spring boot using SAML.
- 15
0
votes
1
answer
981
views
What is the use of resumePath in PingFederate
Can somebody please explain the purpose of resumepath/resumeurl in PingFederate and how can we leverage that while developing custom IdP Adapter for 2FA flow?
If we want to invoke same IdP adapter ...
1
vote
1
answer
259
views
How to setup OKTA device Authorization Flow on server in order to integrate OKTA SSO for Remote IOT devices
I need to authorize the IOT devices that do not have a UI but are able to call some APIs after being authorized by OKTA. I have the list of devices that needs to be authenticated for calling APIs. So ...
- 662
0
votes
1
answer
200
views
OAuth2, SAML, OpenID connect - Which one to use for my scenario?
I work for a company where we give customer (hundreds/thousands of users) access to 2 sites. One owned by a 3rd party SaaS and one owned by us.
Customers spend alot of time registering for both sites ...
- 123
0
votes
1
answer
456
views
How to create a third-party app with node js to apply SSO to Google, Youtube, and Facebook
I want to create a third-party app that allows my users to login with username and password then applying SSO to other applications? however, I do not want to use Okta or Auth0 because it is too ...
- 35
-1
votes
1
answer
30
views
Is OAuth preferred for mobile devices?
I have been trying to understand when to use OAuth vs SAML. Several sites, including this one -- https://dzone.com/articles/saml-versus-oauth-which-one, say when a mobile device is involved, OAuth 2 ...
- 17.3k
1
vote
0
answers
439
views
Desktop application accessing AWS with Azure AD federation SSO
I have a desktop application that has the ability to access AWS S3 buckets. Our enterprise uses Azure AD for user management. What we would like to accomplish is to Authenticate users in our ...
- 139
3
votes
1
answer
2k
views
Can't we use SAML for securing microservices?
Currently, Oauth2 is becoming the de facto for the security module for the microservices ecosystem.
Why can't we replace Oauth with SAML (or any other SSOs for that matter) and JWT with SAML ...
- 4,150
0
votes
1
answer
280
views
OAuth2 with multiple SAML 2.0 IdPs - where to do IdP selection?
I'm building an OAuth2 SSO server that has multiple SAML 2.0 IdPs.
At some point in the OAuth2 flow, the user will need to select which IdP they wish to authenticate against. Ideally, this page ...
- 766
5
votes
1
answer
131
views
Authorising cross site web app to access my RESTful API
Here is the scenario:
I have a web app with some RESTful APIs, the users are using an IdP to do SSO. I registered my web app (as well as many others 3rd party web apps) to the IdP and when the users ...
- 5,561
0
votes
1
answer
28
views
Can oauth be used to generate direct links to a third party service?
I have a client that wants to integrate to my software with the intention to do the following:
- link their users to our platform and then access particular information (oauth first and then transmit ...
- 1,413
1
vote
1
answer
2k
views
SAML / OAUTH redirect URL clarification
I am working on a SSO application with SAML / OAuth and I am not sure if i understand the meaning of the redirect/callback url at all. So lets take SAML as an example.
I have a typical SAML config:
...
- 3,986
0
votes
1
answer
785
views
SLO with SAML 2.0 (SP initiated SLO or IDP initiated SLO), which one is good to have in service provider
We created a application (SP), which have a option to login via SSO(Single Sign On) using third party application (any IdP). We used SAML 2.0 complaint for SSO(Single Sign On).
Question :
Which one ...
8
votes
1
answer
14k
views
Single sign-on support for REST APIs
I am trying to find the best way to solve the following problem: our application is SaaS, and it supports SAML for web login. The application also exposes REST APIs that are supposed to be used in ...
- 163