For the latest stable version, please use Spring Security 6.4.2!

SAML 2.0 Login

The SAML 2.0 Login feature provides an application with the ability to act as a SAML 2.0 relying party, having users log in to the application by using their existing account at a SAML 2.0 Asserting Party (Okta, ADFS, and others).

SAML 2.0 Login is implemented by using the Web Browser SSO Profile, as specified in SAML 2 Profiles.

Since 2009, support for relying parties has existed as an extension project. In 2019, the process began to port that into Spring Security proper. This process is similar to the one started in 2017 for Spring Security’s OAuth 2.0 support.

A working sample for SAML 2.0 Login is available in the Spring Security Samples repository.