Expand my Community achievements bar.

SSO SAML integration in AEM programmatically

Avatar

Level 2

we have aem-6.5.20 on-prem version managed by AMS

 

currently we have saml integration for static page paths as below

/content/mysite/eu/en/private-portal

/content/mysite/eu/de/private-portal

/content/mysite/eu/fr/private-portal

 

We configured in saml section in configMgr with Synchronized Attributes . it is working as expected till today

 

Now our new use-case is we wanted to do sso for dynamic page paths instead of  static page paths.

We have login button in header section of all pages. if user clicks on login button then we need to do saml authentication programmatically and do the sso. Also we need to get the Synchronized Attributes from com.adobe.granite.security.user.UserProperties object.

 

In this case i need to remove the saml config from configMgr. Not sure how to start and where we need to pass certalias key programmatically.

 

Thanks in advance for your solutions and suggestion.

Topics

Topics help categorize Community content and increase your ability to discover relevant content.

2 Replies

Avatar

Community Advisor

@saibul2 What do you mean by dynamic pages? If a page is created inside AEM , they can use the same out of the box SAML config done already. You can read the user attributes from custom SAML post processor , please see the link below

 

https://hashimkhan.in/aem-adobecq5-code-templates/post-processor/

 

Avatar

Level 2

@Saravanan_Dharmaraj thanks for your reply.

 

actually we have set the path /content/mysite/eu/en/private-portal in saml config in configMgr. whenever user hits this page or any child page under this page will automatically show the microsoft login screen and proceed further for sso authentication.

 

below pages are public pages for any internet user, who can view the below pages.

/content/mysite/eu/en/page1

/content/mysite/eu/en/page2

only /content/mysite/eu/en/private-portal and its child pages are secured pages.

 

 

Now the new use case /content/mysite/eu/en will have login button on the header, public user can still view the page. if other user(dealer/customer) want to view more secured information on the same page then they can login the view the secured content.

 

How to do saml or sso for above use case.