...
To manually emulate an idP-initiated SSO login, we simply need to find the target IDP initiated SSO URL and test this URL in our browser.
The format of the the target IDP initiated SSO URL is as such below:.
Do refer to your overall Keycloak & Joget client configurations to fill in the blanks.
| Info | ||
|---|---|---|
| ||
| Code Block | ||
| ||
{server-root}/realms/{realm}/protocol/saml/clients/{client-url-name}-id} |
An example of the fully-qualified URL will look as such below:
| Info | ||
|---|---|---|
| ||
http://localhost:8500/realms/myrealm/protocol/saml/clients/http%3A%2F%2Flocalhost%3A8080%2Fjw%2Fweb%2Fjson%2Fplugin%2Forg.joget.plugin.saml.SamlDirectoryManager%2Fservice |
| Note | ||
|---|---|---|
| ||
For the {client-id}, since the client ID itself is a URL, this value need to be in a URL-encoded format. You can use various free online tools to help convert to the URL-encoded value. |
Finally, you can navigate to this fully-qualified URL via an incognito tab in your browser.
You should see the Keycloak login page, and upon successful login, you will be redirect to the Joget App Center, and thus indicate this exercise is completed successfully.
Optional Modifications
Addon SSO button on login page
...