Here is a 30 second video of Inkling integrated with OpenSSO (Sun's open source identity server). Please forgive the music; single sign on can be kind of boring to watch. Also this was a big accomplishment for our development team, so it needed a bit of flare. :)
Please let us know if you also have a need for single sign on with SAML 2.0 soon and would like to start beta testing with it.
For any developers reading this, this work was powered by saml2ruby, which Todd Saxton and Pat Patterson contributed. saml2ruby was created largely as a proof of concept, but over the last couple months, we've made improvements to it. For example we fixed a security flaw it had, similar to the one Google had in their SAML 2.0 implementation in September of this year. We also found the XML cannonicalization library used for this wasn't doing a good enough job to verify XML digital signatures properly for identity servers other than OpenSSO at the time.
The current plan we have with Pat's blessing is to move saml2ruby over to github, where hopefully it can get even more attention and love from the rubyists there. We'll also provide our patches as well as soon share some lessons learned with this whole experience of SAML, service providers, identity servers, etc.
