convert SAML2.0 to Oauth 2.0

Not applicable

Hi

I have a javascript client that has an OAuth2 token.

I want to acesses an OData endpoint that is protected by SAML

I want apigee to consume the SAML protected OData endpoint and expose a Proxy endpoint.

The Proxy endpoint exposed by apigee should be protected by OAuth 2.0

This endpoint is then consumed by an javascript client.

My Questions Is this possible by using apigee ?

Can i please have the detailed steps to do this or the relevant links to the documentation to accomplish this

0 1 508
1 REPLY 1

Yes, you can do it.

  1. Use the OAuthV2 VerifyAccessToken policy to verify the inbound oauth token.
  2. Use the GenerateSAML policy to generate the appropriate a SAML Assertion.
  3. Configure the Target endpoint to send the request to the OData endpoint, and pass along the required SAML assertion.

As an alternative to #2, you may want to contact an external Security Token Service (STS) to obtain a token. to do that you might use the ServiceCallout policy. You might also want to cache the SAML assertion if it has a lifetime.