![]() ![]() The SSO functionality in hybris is preconfigured to work with ASM module, so there is a asmaddon that has a Filter that processes samlPassThroughToken, and set a session user if the token is found. This cookie should be used for initiating the customer session by the website. ![]() Otherwise, it creates the secure cookie samlPassThroughToken and redirects the user to the URL of the protected resource.If failed, the extension redirects the user back to the identity provider (Okta), and the user is asked to log in. Once the extension receives a request from Okta, it checks if the request has a correct SAML assertion. The samlsinglesignon extension listens to incoming requests (it is /samlsinglesignon/*).After authentication at OKTA with your account, you will be redirected back to hybris and automatically signed-in.SSO entry point generates a new authentication request using the SAML 2.0 protocol, digitally sign it and send it to the OKTA.Once you try to access the protected resource, the system redirects you to SSO entry point (samlsiglesignon extension, /saml/).Technical solutionīehind the scenes the interaction between OKTA and hybris look like this: It has a module named samlsinglesignon which can be used for the integration with any SAML-compatible SSO services. ![]() Hybris OOTB doesn’t support any particular SSO providers. Also, it works as Identity Provider that is useful if you want to store credentials outside your service. There are two user groups where SSO integration makes sense: business users and customers. OKTA is a cloud-based SSO platform that allows users to enter one name and password to access multiple applications. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |