Register Google as Idp and SP

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

Register Google as Idp and SP

Isuru Uyanage
Hi All, 

I have a Travelocity app configured as a Service Provider and the external Idp is Google. When I'm trying to login to Travelocity with any usual Gmail credentials it works successfully. 

Further, I have configured Google as a Service Provider(in the same IS) for a specific domain(xyz.com). And for that SP, the Idp is configured as Facebook. 

Now, If I try to login to Travelocity from an email address which belongs to the specific domain([hidden email]), it redirects to the Facebook for authentication. With correct Facebook credentials, it successfully logins to the Travelocity app. 

I want to clarify if this behavior is correct. Any feedback would be appreciated. 


Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" style="color:rgb(17,85,204)" target="_blank">+94 77 55 30752




_______________________________________________
Dev mailing list
[hidden email]
http://wso2.org/cgi-bin/mailman/listinfo/dev
Reply | Threaded
Open this post in threaded view
|

Re: Register Google as Idp and SP

Isura Karunaratne


On Fri, Dec 8, 2017 at 6:00 PM, Isuru Uyanage <[hidden email]> wrote:
Hi All, 

I have a Travelocity app configured as a Service Provider and the external Idp is Google. When I'm trying to login to Travelocity with any usual Gmail credentials it works successfully. 

Further, I have configured Google as a Service Provider(in the same IS) for a specific domain(xyz.com). And for that SP, the Idp is configured as Facebook. 

Now, If I try to login to Travelocity from an email address which belongs to the specific domain([hidden email]), it redirects to the Facebook for authentication. With correct Facebook credentials, it successfully logins to the Travelocity app. 

WDYM by login to the Travelocity from an email address which belongs to the specific domain? Are you using multi step authentication?

Better if you can attach the images of the configurations?

Thanks
Isura.  

I want to clarify if this behavior is correct. Any feedback would be appreciated. 


Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" style="color:rgb(17,85,204)" target="_blank">+94 77 55 30752






--
Isura Dilhara Karunaratne
Associate Technical Lead | WSO2
Mob : +94 772 254 810




_______________________________________________
Dev mailing list
[hidden email]
http://wso2.org/cgi-bin/mailman/listinfo/dev
Reply | Threaded
Open this post in threaded view
|

Re: Register Google as Idp and SP

Isuru Uyanage
Hi Isura, 

No, I'm not using multi-step authentication. Once it is trying to login to Travelocity with usual Gmail address([hidden email]), it successfully logins. I want to clarify the behaviour of this specific scenario, which is once user tries to login to Travelocity with domain specific email address([hidden email]). The specific gmail domain(xyz.org) is SSO enabled. 

Below are the IS configurations of Google Service Provider and Travelocity Service Provider. 
1. Configured Google as a SP - Idp Facebook
2. Configured Travelocity as a SP - Idp Google

  


My scenario is as below.  

1. Login to Travelocity - http://localhost:8080/travelocity.com


2. The user gets redirected to Google for authentication. (For Travelocity, Google is the Idp)

3. User enters the username/Email as [hidden email] (xyz.org is the domain which is enabled the SSO)


4. User gets redirected to Facebook for authentication.




5. Once the user enters the correct credentials for Facebook, it is redirecting back to Travelocity. 



I want to clarify if this flow is correct. 


Thanks
Isuru







Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" target="_blank">+94 77 55 30752




On Fri, Dec 8, 2017 at 6:51 PM, Isura Karunaratne <[hidden email]> wrote:


On Fri, Dec 8, 2017 at 6:00 PM, Isuru Uyanage <[hidden email]> wrote:
Hi All, 

I have a Travelocity app configured as a Service Provider and the external Idp is Google. When I'm trying to login to Travelocity with any usual Gmail credentials it works successfully. 

Further, I have configured Google as a Service Provider(in the same IS) for a specific domain(xyz.com). And for that SP, the Idp is configured as Facebook. 

Now, If I try to login to Travelocity from an email address which belongs to the specific domain([hidden email]), it redirects to the Facebook for authentication. With correct Facebook credentials, it successfully logins to the Travelocity app. 

WDYM by login to the Travelocity from an email address which belongs to the specific domain? Are you using multi step authentication?

Better if you can attach the images of the configurations?

Thanks
Isura.  

I want to clarify if this behavior is correct. Any feedback would be appreciated. 


Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" target="_blank">+94 77 55 30752






-- 
Isura Dilhara Karunaratne
Associate Technical Lead | WSO2
Mob : <a href="tel:+94%2077%20225%204810" value="+94772254810" target="_blank">+94 772 254 810





Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" style="color:rgb(17,85,204)" target="_blank">+94 77 55 30752




On Fri, Dec 8, 2017 at 6:51 PM, Isura Karunaratne <[hidden email]> wrote:


On Fri, Dec 8, 2017 at 6:00 PM, Isuru Uyanage <[hidden email]> wrote:
Hi All, 

I have a Travelocity app configured as a Service Provider and the external Idp is Google. When I'm trying to login to Travelocity with any usual Gmail credentials it works successfully. 

Further, I have configured Google as a Service Provider(in the same IS) for a specific domain(xyz.com). And for that SP, the Idp is configured as Facebook. 

Now, If I try to login to Travelocity from an email address which belongs to the specific domain([hidden email]), it redirects to the Facebook for authentication. With correct Facebook credentials, it successfully logins to the Travelocity app. 

WDYM by login to the Travelocity from an email address which belongs to the specific domain? Are you using multi step authentication?

Better if you can attach the images of the configurations?

Thanks
Isura.  

I want to clarify if this behavior is correct. Any feedback would be appreciated. 


Thanks and Best Regards,

Isuru Uyanage
Software Engineer - QA | WSO2
Mobile : <a href="tel:+94%2077%20767%201807" value="+94777671807" style="color:rgb(17,85,204)" target="_blank">+94 77 55 30752






--
Isura Dilhara Karunaratne
Associate Technical Lead | WSO2
Mob : <a href="tel:+94%2077%20225%204810" value="+94772254810" target="_blank">+94 772 254 810





_______________________________________________
Dev mailing list
[hidden email]
http://wso2.org/cgi-bin/mailman/listinfo/dev