I am trying to authenticate users on a Wildfly application using a SAML SSO.
I do not have the possibility to choose the IDP, so no keycloak option available.
I was looking at picketlink, but I have read that is gone to be merged with keycloak and not really further improved. I know keycloak as IDP but as SP I have only used the wildlfy adapter.
So, is the replacement of picketlink for SPs the keycloak wildlfy adapter? I have not seen any docs on how to use it with non-keycloaks clients.
Actually you can use any SAMLv2 service provider implementation, it just a matter which kind of integration your need within JBoss (WebContainer/EJB). You could even frontend JBoss with Apache httpd server and use mod_auth_mellon as SAML SP, see https://www.keycloak.org/docs/3.2/securing_apps/topics/saml/saml-overview.html If you are using Spring you could also integrate Spring Security SAML extension as SAML SP implementation.