topic Re: SSO with mashup API in Integration, Extension & APIs

SSO with mashup API

Anonymous — Mon, 27 Jul 2015 10:03:29 GMT

Hi,

This might not be a specific qlik question but just wanted to seek help from community if anyone has faced similar issue.

We have set up SSO using shibboleth and one of the SP is qlik while another is our java based application.

User is login into Java app (SP2) getting redirected to IDP after authentication redirected back to SP2. In the welcome page of SP2 ,we have embedded qlik sense objects using mashup API (CORS). Now since user is not yet authenticated against qlik (SP1) , with web socket connection , its getting redirected to IDP which in turns redirect entire page to qlik sense after setting SP1 cookie.

If I use IFRAME everything works fine because the redirection and back redirection happens inside iframe and SP1 cookie gets set.

Has anyone encountered similar issues. As of now I have solved this issue by a hidden iframe. but looking for a permanent solution.

Re: SSO with mashup API

Tue, 28 Jul 2015 21:34:03 GMT

Vishal, see the rest of this document I referenced for you in a different thread you created. Embedding Qlik Sense content into an IIS Website on Different Servers

For this issue, I recommend looking at the stub file component of the document.

Re: SSO with mashup API

Anonymous — Wed, 29 Jul 2015 09:28:37 GMT

Thanks Jeff !!! This is exactly what I wanted. great solution.

So now I have chaining the login process from my portal redirect to qlik and then redirect back to portal.

I wanted to achieve the same thing with logout but not sure what would be the logout URL for qlik in case os SAML Authentication.

Thanks

-Vishal

Re: SSO with mashup API

Fri, 31 Jul 2015 15:55:12 GMT

For logout if not using SAML in the virtual proxy, specify the authentication module uri and when a user logs out they will be redirected to that web page. For SAML, I believe they would be redirected using an SP-initiated SAML request.