SAMO Authentication Server

Overview

SAMO Authentication Server is a flexible, enterprise-grade authentication solution that acts as a bridge between your applications and various identity providers. Whether you're using OpenID Connect (OIDC), SAML, or CAS protocol, this server handles the complex authentication flows so your service providers (like LAS or Gateway) don't have to. Think of it as a trusted intermediary that securely verifies user identities and passes that information back to your applications, all while maintaining centralized control over your authentication policies.

How It Works For You

When a user tries to access one of your protected applications, the Authentication Server seamlessly redirects them to the configured identity provider (such as Google, Azure AD, or your corporate SSO system) for login. Once the user authenticates successfully, the server validates their credentials, synchronizes user attributes if configured, and securely returns the verified identity back to your application. This means you can manage multiple authentication providers from a single, configurable platform without modifying your existing applications.

Getting Started

Configuration is straightforward and JSON-based, allowing you to define multiple identity providers, client applications, and user attribute mappings without touching code. The server uses standard SAMO properties for operational settings, while authentication provider configurations are stored as JSON metadata. Once deployed and configured, the Authentication Server runs autonomously, handling authentication requests, managing sessions, and ensuring secure communication between your applications and identity providers.