This documentation is for WSO2 Identity Server 5.0.0. View documentation for the latest release.
SAML2 Bearer Assertion Profile for OAuth 2.0 with WSO2 Travelocity - Identity Server 5.0.0 - WSO2 Documentation
||
Skip to end of metadata
Go to start of metadata

Configure OAuth/OpenID and SAML SSO

  1. See the Configuring Inbound Authentication for a Service Provider topic, to configure the OAuth/OpenID Connect service provider. 

  2. See the Configuring Single Sign-On topic to configure single sign-on with the Travelocity sample.
  3. Navigate to Main>Service Providers>List and click Edit to modify the service provider you just created. Modify the following fields of the SAML configuration and click Update

    Check the checkbox for the Enable Audience Restriction and Enable Recipient Validation fields and enter the following values:

    Audience : https://localhost:9443/oauth2/token

    Recipient : https://localhost:9443/oauth2/token

     

  4. Open the travelocity.properties file found in the <TOMCAT_HOME>/webapps/travelocity.com/WEB-INF/classes folder and edit the following configurations.

    EnableOAuth2SAML2Grant=true
    OAuth2.ClientId=(enter the client id received at the application registration)
    OAuth2.ClientSecret= (enter the client secret received at the application registration)

Running the sample

  1. Access the following URL: http://localhost:8080/travelocity.com. You will be directed to the following page.
  2. Click Click here to login with SAML from Identity Server. You will be redirected to the Identity Server for authentication.
  3. Enter the username and password and click Sign In.
  4. Click Request OAuth2 Access Token to receive the access token. 
  5. You will receive an access token as seen in the screen below. 

  

  • No labels