[openstack-dev] [keystone federation] some questions about keystone IDP with SAML supported
93425129 at qq.com
Wed Oct 14 11:10:20 UTC 2015
hello, keystoners. please help me
Here is my use case:
1. use keystone as IDP , supported with SAML
2. keystone integrates with LDAP
3. we use a java application as Service Provider, and to integrate it with keystone IDP.
4. we use a keystone as Service Provider, and to integrate it withe keystone IDP.
in the k2k federation case, keystone service provider requests authentication info with IDP via Shibboleth ECP.
in the java application, we use websso to request IDP, for example：
idp_sso_endpoint = http://10.111.131.83:5000/v3/OS-FEDERATION/saml2/sso
but, the java redirect the sso url , it will return 404 error.
so, if we want to integrate a java application with keystone IDP, should we need to support ECP in the java application?
here is my some references:
my keystone version is kilo
help me, thanks
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OpenStack-dev