You need to sign in to do that
Don't have an account?
Tarun Agarwal 1
SAML with CanvasApp
Hi All,
I am new to SAML flow, can anyone please giude me to SAML setup for Canvas App?
Canvas App points to My Server ie https://localhost.com/
Using the Signed Request I authenticate the user and let him use the application.
Now I want SAML enabled Canvas App, in My Case IDP is 3rd party (non Salesforce). Service provider is my domain ie localhost.com
1. When I load the Canvas App on my Visual Force Page how the auth will ocuure?
2. What Signed Request I will get?
3. Do I need to make any changes to my Canvas App?
4. My Customers have SAML enabled for their environment, where I do not have access to IDP. Can my customer configure SAML settings for Canvas App?
5. Does SAML configuration needs to be defined at the time of dedvelopment? can it be edited by Customers?
I may sound confuse please bear with me :)
I am new to SAML flow, can anyone please giude me to SAML setup for Canvas App?
Canvas App points to My Server ie https://localhost.com/
Using the Signed Request I authenticate the user and let him use the application.
Now I want SAML enabled Canvas App, in My Case IDP is 3rd party (non Salesforce). Service provider is my domain ie localhost.com
1. When I load the Canvas App on my Visual Force Page how the auth will ocuure?
2. What Signed Request I will get?
3. Do I need to make any changes to my Canvas App?
4. My Customers have SAML enabled for their environment, where I do not have access to IDP. Can my customer configure SAML settings for Canvas App?
5. Does SAML configuration needs to be defined at the time of dedvelopment? can it be edited by Customers?
I may sound confuse please bear with me :)
https://developer.salesforce.com/page/Implementing_SAML_SSO_for_Canvas_Apps
Please mark this as the best answer if it did resolved your queries.
here it is http://solutionrock.com/tutorials/2013/6/23/adding-a-canvas-app-to-the-chatter-tab
Are you referring to OAuth or SAML? you have two things going on here. OAuth (and SignedRequest) provides your third party app with a scoped OAuth token. This can be used for making REST calls into your Salesforce Org.
SAML can be configured to work with Canvas so you when the user invokes your canvas app (on the VF page your case) they are seamlessly logged into your third party app.
2. What Signed Request I will get?
Not sure what you mean here… The Signed Request is sent to your third party app in the request body of the post when your app is invoked. This signed request is encoded and signed, you need to verify it and decode it (many examples of this). It is a JSON object that contains contextual information and an OAuth token,
3. Do I need to make any changes to my Canvas App?
What is your canvas app trying to do? We give you and SDK, feel free to use as much or little of it as you want.
4. My Customers have SAML enabled for their environment, where I do not have access to IDP. Can my customer configure SAML settings for Canvas App?
Not sure the relationship between “I” and Customer here.
5. Does SAML configuration needs to be defined at the time of dedvelopment? can it be edited by Customers?
Yes it can be edited later. Who is the Customer though? Do they own the Org, Third Party App, or do they just use the thing?