WLS 10.3.6-Will the HTTPClusterServlet & HTTPProxyservlet be authenticated via SAML2 and later the request go to the two Servlets? (Doc ID 2065944.1)

Last updated on OCTOBER 26, 2015

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.

Goal

The purpose is to implement a SAML Single Sign-On solution.

The Identity Partner (IdP) is a third party where no control on is possible.

So the SAML assertions will be authenticated by this IdP and a WebLogic Server will act as a Service Provider (SP).

This Weblogic SP needs to act as a reverse proxy to applications hosted behind Weblogic Server.

The reverse proxy in WebLogic Server is done only by HTTPProxyServlet and HTTPClusterServlet.

The Weblogic SP needs to authenticate with the IdP before it redirects the request to the applications hosted behind it .

So the question is:

- If we setup SP in WebLogic Server by enabling the saml2.war module then will the HTTPClusterServlet & HTTPProxyservlet be authenticated via SAML2 first and later the request go to the two Servlets?
 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms