Setup

First, make sure you've uploaded the metadata for your SP into SAMLdebug.com. This allows our test Identity Provider to know how to communicate with your service.

Next, you'll need the metadata for our Identity Provider. This must be loaded into your SP and can be loaded from a URL or uploaded as file - see below:

SP-Initiated Login

This is the most common use case, where a visitor to your service indicates they want to login with their institutional or company SSO. How this is triggered is entirely service-specific, but many services support a "WAYFless URL" which can be used to trigger a login via a specific integration

If you have a WAYFless URL, enter it below with a placeholder {entity}, and we'll generate a link you can use to start the login process.

IdP-Initiated Login

An alternative flow is where the IdP sends an 'unsolicited' login to a service. A common use case for this is where an organization provides a listing of applications they use, and the user can click an application to be immediately logged into it.

IdP Logout

The test IdP will remember your logged-in state, you can trigger a logout by pressing the button below

Logout