Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add SAML authentication with secure checks #2270

Closed
wants to merge 35 commits into from
Closed

Add SAML authentication with secure checks #2270

wants to merge 35 commits into from

Conversation

RomanKosovnenko
Copy link

@RomanKosovnenko RomanKosovnenko commented Nov 9, 2020
edited
Loading

This is a reimplementation of #185 that is based on #1334 on the current master. (related FR: #1253)

The main differences:

  • It supports security checks like a request/response signature validation.
  • Support of the Single Sign On & Single Log Out
  • Roles mapping
  • Redirection after log out

This implementation works well in our project. And we would like to make it available to others. Even if it will not be merged.

yol and others added 30 commits April 20, 2020 15:47
@yol
Add SAML authentication
49eefd8
@RomanKosovnenko
Merge branch 'saml-auth' of https://github.com/yol/greenlight into yo…
4e84d9b 
…l-saml-auth
@RomanKosovnenko
Merge branch 'yol-saml-auth'
a5afa29
@RomanKosovnenko
Custom image
304bb3a 
- Add SAML to DE localization
- Move to custom docker image of the greenlight
- Add examples of env variables
@RomanKosovnenko
Add instruction and description of SAML authentication
f5b8f64
@RomanKosovnenko
Merge pull request #2 from intecsoft/hotfix
aa267e9 
Quick fix to SAML
@RomanKosovnenko
Add ENV variable to change SAML auth callback function
f438ff3
@RomanKosovnenko
fix typo
2a56f1c
@RomanKosovnenko
roles and logout
9a5cdec
@RomanKosovnenko
fix omniauth_saml detection
f9763e1
@K0nstantine
Merge pull request #4 from intecsoft/features/SAMLcallbackUrl
e0da286 
Add ENV variable to change SAML auth callback function
@RomanKosovnenko
Add creation of two roles Teacher and Administrator (#5)
d80455d 
Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Hotfix (#6)
59e9fc8 
* Change SAML btn color to primary

* Update readme

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Features/logout redirection (#7)
a017ec8 
* Logout redirect

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Documentation refactor (#8)
f6c054b 
* Separate SAML documentation and README

* fixes according review

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Documentation refactor (#9)
2fb8279 
* Add documentation about the DB configuration
@RomanKosovnenko
SP certificates for request signature (#10)
71f457e 
SP certificates for request signature

* Added sertificate to signin the requests from the SP.
* Add env variable for filenames of the certificate and private key.

* Signature properties

* Add a bit more documentation

* even more documentation

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Add IdP initiated SAML logout (#11)
16a5b3a 
* Add IdP initiated logout
* add env variable
Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
[fix] Fixed signature validation on SLO request (#12)
fa28c1b 
* Update IdP certificate settings to IdP certificate file

* Change omniauth-saml to fixed version by intecsoft

* Add test-idp-certificate

* Added additional documentation about the IdP's certificate

* update omniauth- and ruby-saml to the latest versions

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko
Return to omniath-saml gem with merged fix by intecsoft (#13)
a343554 
Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@RomanKosovnenko @K0nstantine
Documentation and deploying refactoring (#14)
883adac 
* fix documentation

* Enhance grammar in the Readme.md

Fixing some spelling and grammar error in the documentation.

Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
Co-authored-by: K0nstantine <kostiantyn.shalbanov@intecsoft.de>
@RomanKosovnenko
Add SOFT_MODE parameter to the sample.env (#15)
642ed75 
Co-authored-by: rko <roman.kosovnenko@intecsoft.de>
@K0nstantine
Update README.md
f061ff0
@RomanKosovnenko
Typos and inaccuracy in the documentation
0cf04e8
@K0nstantine
Fix documentation drawbacks (#16)
0016a98
@RomanKosovnenko
Update SAMLconfiguration.md
acd3dfc
@RomanKosovnenko
Update SAMLconfiguration.md
a21a6c5
@RomanKosovnenko
Update SAMLconfiguration.md
d8220bd
@K0nstantine
Fix/doc (#17)
5fa4496 
Fix docs for SAML_IDP_SLO_URL
@RomanKosovnenko
Merge branch 'master' of https://github.com/bigbluebutton/greenlight
de67246 
…into bigbluebutton-master
@coveralls
Copy link

coveralls commented Nov 9, 2020
edited
Loading

Coverage Status

Coverage decreased (-0.01%) to 90.408% when pulling 0d3d0c2 on intecsoft:SAML into 81907d0 on bigbluebutton:master.

@farhatahmad
Copy link
Collaborator

See #1334 (comment)

@Ithanil Ithanil mentioned this pull request Oct 20, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
on hold
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@RomanKosovnenko @coveralls @farhatahmad @yol @K0nstantine