This content has been marked as final. Show 1 reply
I successfully setup configuration where Weblogic works as IDP and JBoss as SP. But in my case Weblogic IDP hosts custom login web application. As I know after you call saml2/idp/sso/login-return url Weblogic verify whether user authenticated on Weblogic. If authenticated then SAML response will be generated. So the only thing you need to do is to authenticate user on Weblogic IDP and call saml2/idp/sso/login-return.
If you have separate server and web application for login you need to create custom authentication provider which can authenticate user by some data which is generated from login server and trusted by weblogic.
From my point of view your login server should be IDP. Otherwise the only reason to use Weblogic is SAML engine. But it is possible to create IDP on your own. For example Weblogic SAML based on OpenSAML library.