Let's look at what specific configuration is done to support SAML.
SAML filters are defined in springContext.xml
, which diverts the URLs of the application through SAML filters and URLs:
The context file defines a SAML logger that will log the SAML messages. The most important thing that we do in the Spring Security configuration is to configure an authentication manager. The manager is usually configured explicitly as a database query with the database/data source information, LDAP information, or just a bean class that extends the UserDetails Service class.
For SAML, the authentication manager is configured as follows:
You can give the SAMLAuthenticationProvider
reference in your application, as shown in the following image:
As discussed, the configuration of SAML in the context must mainly consist of Identity provider information's circle as an open Identity provider. The IDP provider information is configured as follows: