In Adobe Experience Manager (AEM) 6.x, a SAML authentication handler is provided by default. So, you do not have to write a handler for authentication. This handler provides support for the SAML 2.0 Authentication Request Protocol (Web-SSO profile) using the HTTP POST binding.
To configure the SAML Authentication Handler, you need to perform these tasks:
- IdP Post URL (On which the user is redirected to for one-time authentication)
- SP ID (Your AEM instance is SP in this case).
A single IdP can have multiple SP entities and every SP entity can have a different redirect URL after successful authentication, hence it is recommended to have a SP ID. (This would be provided by the IdP entity).
To read this development article, click https://helpx.adobe.com/experience-manager/using/aem63_saml.html.