Add SAML SSO to a Genero web application

Follow these steps to add SAML SSO to a Genero web application.

This task must be performed in the .xcf application configuration file for the Genera Application Server. The application configuration is slightly different for GAS and JGAS, choose the appropriate step.

1. In the application configuration file (.xcf) for the GAS, add <DELEGATE service="services/SAMLServiceProvider">.

   <?xml version="1.0"?>
   <APPLICATION Parent="defaultgwc"
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:noNamespaceSchemaLocation="http://www.4js.com/ns/gas/5.00/cfextwa.xsd">
     <EXECUTION>
       <PATH>$(res.path.qa)/applications/myapp</PATH>
       <MODULE>App.42r</MODULE>
       <DELEGATE service="services/SAMLServiceProvider"/>
     </EXECUTION>
   </APPLICATION>

   With the above configuration and default GAS configuration, the delegation points to the delegation REST web service in the $FGLDIR.

2. In the application configuration file (.xcf) for the JGAS, add <DELEGATE service="SAMLServiceProvider">.

   <?xml version="1.0"?>
   <APPLICATION Parent="defaultgwc"
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
    xsi:noNamespaceSchemaLocation="http://www.4js.com/ns/gas/5.00/cfextwa.xsd">
     <EXECUTION>
       <PATH>$(res.path.qa)/applications/myapp</PATH>
       <MODULE>App.42r</MODULE>
       <DELEGATE service="SAMLServiceProvider"/>
     </EXECUTION>
   </APPLICATION>

   For details of deploying applications with the JGAS, see the Launch SAML SSO app in JGAS page in the Genero Application Server for Java User Guide.

The GAS/JGAS will handle the SAML protocol and start the Genero web application only when the user has been authenticated, otherwise an HTML error page is returned.