Using WSO2 Identity Cloud, you can create a custom application and configure it to facilitate Single Sign-On (SSO) using SAML. This custom application is a representation of your web application and can be integrated with WSO2 Identity Cloud to provide SSO for users of this application.
To demonstrate SSO of a SAML-based custom application, first you need to obtain and configure a web application. Next you must configure a custom application with agent-type SAML to represent this web application. Users of the web application can access it using Single Sign-on via the Identity Cloud. This tutorial uses Travelocity as the sample web application to demonstrate how SSO works.
See the following topics for instructions on how to configure the sample web application with WSO2 Identity Cloud.
Adding a custom application
To know how to add a custom application, see here.
Configuring the sample web application
To deploy and configure the travelocity web application follow the steps below.
Download the travelocity.com.war file. Before you deploy the application, you may need to edit the travelocity.properties file.Expand to see how to edit the travelocity.properties file
- Open command prompt.
- Go to the folder where you have downloaded the travelocity.com.war file.
- Create a new directory (e.g.,
- Extract the travelocity.com.war to the newly created directory (e.g.,
unzip travelocity.com.war -d MyTest/). This extracts all the files to the
- Navigate to the ..
Edit the travelocity.properties file found inside the ..
/WEB-INF/classesdirectory (sample given below).
A unique identifier for this SAML 2.0 Service Provider application.
The URL of the SAML 2.0 Assertion Consumer. Note:
demotenentshould be replaced by actual tenant created.
The URL of the SAML 2.0 Identity Provider.
Save the file.
- Navigate to the
- Create the travelocity.com.war file (e.g.,
jar -cvf travelocity.com.war *. ).
Go to WSO2 Integration Cloud and deploy the travelocity web application. Click the following for instructions on how to deploy a web application in Integration Cloud.Expand to see how a web application is deployed in Integration Cloud
- Log in to Identity Cloud admin portal.
- Click the Settings menu at the top right corner and navigate to Integration Cloud.
- Click Create Application.
- Scroll down and click on Java Web Application in Services.
- Under Deploy an artifact, select the Local File System option and click Continue.
- Enter an Application Name and click Browse to select the travelocity.com.war file.
You see the travelocity.com.war getting loaded.
- Once uploading is completed, click Create to deploy the application.
You see the deployment progress as shown below.
Once the application is successfully deployed, it is displayed as shown below.
Alternatively, you can see the deployed travelocity application in the Integration Cloud landing page.
Configuring the custom application with the web app
- Once you enter the application name, the following page is displayed with Agent as the selected app type and SAML2 Web SSO is selected by default. Make sure the Configure Manually radio button is selected.
- Enter Issuer as 'travelocity.com' and provide the Assertion Consumer URL as ' click Add to add the link. Select Enable Response Signing.
- Scroll down and in the Store Configuration, enter ' as the Access URL.
- Click Save to add the application details.
- The added application is displayed, and you can delete or edit it by clicking the button next to the application thumbnail name.
- Click Go to User Portal.
- Click the added custom application that is in the user portal.
- You are directed to travelocity home page () without having to sign in explicitly. This shows SAML based SSO capability for a custom application using Identity Cloud.