0

We've developed a SAML2 SP (supporting IdP-Initiated SSO, as per the user journey we want).

My question is, short of developing an IdP, how can we test it is working? Is there an IdP-Initiated SSO test harness out there? (I know of SSO Circle, but that is for SP-Initiated SSO).

David Kamer
  • 2,677
  • 2
  • 19
  • 29
Oliver McPhee
  • 1,010
  • 10
  • 18
  • Didn't get your question? Do you want to develop SAML IdP server or Do you need to test SAML IdP-Init SSO? – Zeigeist Jul 26 '16 at 18:15

2 Answers2

1

You can use a trial account from Onelogin and configure a SAML Test Connector, or deploy your own IdP with simpleSAMLphp

Glorfindel
  • 21,988
  • 13
  • 81
  • 109
smartin
  • 2,957
  • 2
  • 23
  • 33
0

You can test out IdP-Initiated SSO via this JS Bin: https://output.jsbin.com/nukiso

The code is quite long and wouldn't be appropriate to put directly into this post.

It works completely on the browser side and uses web crypto APIs for signing the assertion. It is probably a better idea to use a real IdP as this is more of a tool for learning how to make the SAML response/assertion. To prevent anyone from being able to log into your website without authentication, do not use the JS Bin IdP metadata on a public/production server.

xz64
  • 1
  • 1
  • 1