Spring Boot — SAML 2.0 Service Provider
github.com/spring-boot-security-saml-sample:2.0.0
The authentication flow, step by step:

Select your Identity Provider (IdP) Select an Identity provider that holds your authentication data. You can either enable users to explicitly select an IdP (like in this case) or you can configure as well an automatic means of Identity Provider discovery.

Authenticate against the selected IdP The Service Provider (SP) generates a SAML 2.0 authentication request, which is encoded and embedded into the URL for SSO service. After being redirected, you must provide your credentials to authenticate against the selected IdP.

Get back and see your login data The Identity Provider returns the encoded SAML response to the browser. You will be redirected back to the Service Provider. If your identity is established by the IdP, you will be provided with app access and your profile data displayed.

Logout from your session You can now logout from the app. If enabled, you can also invoke the Single Logout (SLO) that invalidates client application sessions in addition to its own SSO session (IdP-side).

Get started