gosamlserviceprovider

package module

v1.0.9 Latest Latest Go to latest Published: Nov 5, 2022 License: Apache-2.0 Imports: 3 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/KvalitetsIT/gosamlserviceprovider

Links

Open Source Insights

README ¶

SAMLProvider

This repository contains a Caddy module which implements the SAML protocol to secure backend services in a containerised setup.

There are 3 images build from this project

kvalitetsit/gosamlserviceprovider, which contains the SAML caddy module
kvalitetsit/caddysamlprovider, which contains a version of Caddy with the SAML module deployed
kvalitetsit/caddysamltemplates, which contains Caddy configuration templates for SAML

Configuration

Caddy including the SAML module are configured in the Caddy json configuraion:

To make configuration easier a configuration template is implemented, which can be used to configure Caddy using environment variables. The kvalitetsit/caddysamltemplates image can be configured using the following variables

Variable	Description	Default
TEMPLATE_FILE	The json template to use, currently only one is available	//caddyfiletemplates/Caddyfile-saml
CADDYFILE	The output destination where the compiled caddy configuration is saved	//caddy/config.json
SAML_CLIENT_LOGLEVEL	The loglevel used in Caddy	info
LISTEN_PORT	The HTTP port that the Caddy proxy is bound to	-
MONGO_HOST	Hostname for the MongoDB sessionCache	-
MONGO_DATABASE	The database where sessions are cached	-
SAML_SESSION_HEADER	The name of the Cookie and HTTP header which stores the sessionID	-
SAML_SESSION_EXPIRY_HOURS	The number of hours that the Session is valid. This is only used when the IDP does not provide expiry on the Saml assertion	-
SAML_AUDIENCE_RESTRICTION	The audience for the SAML protocol	-
SAML_IDP_METADATAURL	The URL where SAML metadata can be downloaded from the IDP	-
SAML_ENTITY_ID	The SAML entityID	-
SAML_SIGN_AUTH_REQUEST	Controls whether SAML requests are signed or not	-
SAML_SIGN_CERT_FILE	Certificate file for signing SAML requests	-
SAML_SIGN_KEY_FILE	Private key file for signing SAML requests	-
SAML_ASSERTION_CONSUMER_URL	The callback URL to use IDP login callbacks, must be a fully qualified URL	-
SAML_SLO_CONSUMER_URL	The callback URL to use for IDP Logout callbacks, must be a fully qualified URL	-
SAML_COOKIE_PATH	The path where the session cookie will be valid	-
SAML_COOKIE_DOMAIN	The domain where the session will be valid	-
SAML_EXTERNAL_URL	The external URL where the IDP will do callbacks to the service	-
SAML_SSO_PATH	The SAML URL to use for login callbacks	/saml/SSO
SAML_METADATA_PATH	The path where SAML metadata are provided	/saml/metadata
SAML_LOGOUT_PATH	The path where SAML logout is initiated	/saml/logout
SAML_SLO_PATH	The path where the IDP should sent LogoutResponse	/saml/SLO
SAML_BACKEND_HOST	The hostname for the backend service	-
SAML_BACKEND_PORT	The portname for the backend service	-

Some changes.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
caddy
modules
prometheus
saml
samlprovider

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL