/
Testing Passive STS

This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Testing Passive STS

Jan 11, 2018

This topic lists out the steps required to configure and execute testing of Identity Server's Passive STS. 

Prerequisites 

Configuring the sample

Do the following configuration changes to the <SAMPLE_HOME>/passive-sts/passive-sts-client/PassiveSTSSampleApp/src/main/webapp/WEB-INF/web.xml file.

  1. Specify idpUrl as the URL of Identity Server's Passive STS. The following is an example. 

    <init-param> <param-name>idpUrl</param-name> <param-value>https://localhost:9443/passivests</param-value> </init-param> 

  2. Specify the replyURL as the URL of the web app. The following specifies PassiveSTSSampleApp as the web app.

    <init-param> <param-name>replyUrl</param-name> <param-value>http://localhost:8080/PassiveSTSSampleApp/index.jsp</param-value> </init-param>

  3. Specify the realm. This should be a unique identifier for the web app as seen in the example below. 

    <init-param> <param-name>realm</param-name> <param-value>PassiveSTSSampleApp</param-value> </init-param>

  4. For tenant user logins, specify the tenantDomain

    <init-param> <param-name>requestParams</param-name> <param-value>tenantDomain=tenant4.com</param-value> </init-param>

Configuring Identity Server

  1. Log in to the Identity Server and go to Service Providers>Add in the Main menu in the management console

  2. Enter a unique name for the service provider and click Register. The following form appears. 

  3. Expand the Inbound Authentication Configuration>WS-Federation (Passive) Configuration section and provide the following values. See Configuring WS-Federation (Passive) for more information.

    • Passive STS Realm - Provide the same realm name given to the web app

    • Passive STS WReply URL - Provide the URL of the web app

  4. Click update. 

Deploying the sample on Apache Tomcat