-
Notifications
You must be signed in to change notification settings - Fork 206
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Is it possible to add multiple IDP? #53
Comments
It looks like you should be able to use Omniauth's |
Hi @md5 thanks for your suggestions. I manipulate the setup phase like this: def saml_setup
company = Company.find_by_sub_domain(sub_domain)
settings = company.company_auth_provider.auth_settings
request.env['omniauth.strategy'].options[:idp_cert_fingerprint] = settings.idp_cert_fingerprint
request.env['omniauth.strategy'].options[:idp_sso_target_url] = settings.idp_sso_target_url
render text: "saml setup phase.", status: 404
end But somehow, the it could not decrypt the response:
Any idea? |
@vuhailuyen1991 It looks like you configured it using Did you see a redirect to the correct |
FWIW - I was able to get multiple IDPs working using the Omniauth |
Have any idea how to generate idp_sso_target_url? |
@Rajniktc |
Thank you @md5. |
Your IdP should give you either the You probably don't need |
We need to test our application with testing IDP. |
how would you configure for devise integration and multiple idps? |
never mind. i omitted config in devise.rb file and it works. |
@medexdev do you mean that for multiple idps and devise you don't provide the config info inside devise.rb? |
You can also use the https://github.com/salsify/omniauth-multi-provider gem. |
Hi, is ":idp_sso_target_url" required for IdP-Initiated SSO process ? |
@bruno-toledo Old post, but in our setup, IdP-initiated auths just hit the /auth/saml/callback route. In there, I validate the SAMLResponse param and continue with the authentication flow. I'm no security expert, but my understanding is that where a SP-initiated auth calls back to and where the IdP-initiated auth goes to are effectively the same. It reads a lot like the |
Hi all,
I would like to confirm that omniauth supoorts multiple IDPs. If yes, please provide a guide for that.
Thanks
The text was updated successfully, but these errors were encountered: