Facebook identity can be used for User authentication and
web application access in SSO environment. This post describes the steps involved in using
Facebook user identity for accessing a web application protected by PingFederate
within the same domain
- Register PingFederate as a Facebook application in Facebook Developer Apps page
- Enter the Site URL as https://pingfederate-host:pingfederate-port/ext/facebook-authn And copy the App ID & App Secret generated
- Create a Facebook IdP adapter and enter the App ID, App Secret & Site URL (required). Enter other optional info, if needed
- Create an Open Token Adapter at PingFederate SP
- Create an Adapter-Adapter mapping from Facebook IdP Adapter to SP Open Token
- Access the web application using adapter2adapter end point https://pingfederate-host:pingfederate-port/pf/adapter2adapter.ping?IdPAdapterId=facebookadapterid&TargetResource=appurl
- User gets redirected to Facebook login page for Authentication
- After Authentication, user is prompted for Authorization to share user info. Allow
- User attributes are fetched from Facebook and passed to the target application. This can be verified in the server log
