Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SAML Auth via SU IdP #16

Open
mjmaurer opened this issue Aug 14, 2024 · 0 comments
Open

SAML Auth via SU IdP #16

mjmaurer opened this issue Aug 14, 2024 · 0 comments

Comments

@mjmaurer
Copy link
Contributor

Resources:

Steps:

  • Create workgroup for geomatch staff (already request geomatch stem)
  • Will need to add GeoMatch to SPDB
  • If AWS Cognito ALB SP supports signing requests then we don't have to add callback URLs (assertion consumer service). It doesn't mention how to provide public key to Stanford IdP.
  • Need to map eduPersonEntitlement (see here) and then authorize based on that
  • Cognito might not be able to do authz because it doesn't support challenges for federated authn. But, we can instead just return an error in post-authn lambda. Errors will cause authn to fail
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mjmaurer