Hi,
I am trying to implement SAML 2.0 in my webspeed application. I have selected Identity provider (IDP) initiated single sign on approach, in which user logs in, an IDP (like OneLogin or OKTA) and clicks on link to my webspeed application and then IDP sends an assertion to Service provider(SP). Now in order to write Assertion consumer service to consume the incoming assertion from IDP, I am using openedge REST service. I am getting the assertion through the REST web service and I have processed it as well but I am unable to redirect the user to my webspeed application through REST web service. I have another option of receiving the assertion directly on my webspeed application but I am unsure of it because of security reasons.
The code I tried, to redirect to webspeed application is:
Assign oURI = new URI(UriSchemeEnum:http, 'localhost:9999')
oURI:Path = 'webspeed/cgi/cgiip.exe/WService=SMDevEnv/controller.p' NO-ERROR.
oRequest = RequestBuilder:Get(oURI)
:Request.
oResponse = HttpClient:Instance():Execute(oRequest).
As the REST web service only returns JSON data, is there any way to return HTML data or redirect to webspeed application through REST?
Is it feasible to receive assertions directly on webspeed application from security point of view?
OpenEdge version - 11.4
Thanks,
Anuj J