You can deploy SAML in scenarios where multiple Service Providers process SAML requests forwarded by a reverse-proxy or a load balancer. In order to configure SAML for deployment behind load balancer or reverse-proxy, please follow the below steps:
- Go to the .../<AdeptiaInstalledFolder>AdeptiaServer/ServerKernel/etc/saml.
- Open SecurityContext.xml in the text editor.
Set the IP address or domain name of Load Balancer as a value in the <entityBaseURL> parameter in the below format:
<protocol_name>://<IP_address_or_domain_name>/adeptia
where,
<protocol_name> is the name of the protocol. For example, http or https.
<ip_address> is the IP address of the computer on which load balancer is configured.
<domain_name> is the domain name.
For example, http://www.myserver.com/adeptia
Set the values of the below properties in the <contextProvider> parameter.
Property NameDescriptionscheme Name of the scheme (http or https). serverName Name of the server. serverPort Port number of the server. includeServerPortInRequestURL To include server port number in the URL or not. It must be false. contextPath Prefix of a URL path used to select the context(s) to which an incoming request is passed. A URL is in the format: http://hostname.com/contextPath/, where each of the path elements can be zero or more separated elements. It must be /adeptia. It will look like:
<bean id="contextProvider" class="org.springframework.security.saml.context.SAMLContextProviderLB">
<property name="scheme" value="http"/>
<property name="serverName" value="www.myserver.com"/>
<property name="serverPort" value="8080"/>
<property name="includeServerPortInRequestURL" value="false"/>
<property name="contextPath" value="/adeptia"/>
</bean>- Save the file.