richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
962 Commits
3 Branches
120 Tags
80 MiB
Tree: bdfac22876
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'bdfac22876'
${ noResults }
wiki/server/modules/authentication/saml/definition.yml

124 lines
4.4 KiB
Raw Normal View History

feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: auth jwt, permissions, login ui (wip)
6 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
  1. key: saml
  2. title: SAML 2.0
  3. description: Security Assertion Markup Language 2.0 (SAML 2.0) is a version of the SAML standard for exchanging authentication and authorization data between security domains.
  4. author: requarks.io
  5. logo: https://static.requarks.io/logo/saml.svg
  6. color: red darken-3
  7. website: https://wiki.oasis-open.org/security/FrontPage
  8. isAvailable: true
  9. useForm: false
  10. props:
  11. entryPoint:
  12. type: String
  13. title: Entry Point
  14. hint: Identity provider entrypoint (URL)
  15. order: 1
  16. issuer:
  17. type: String
  18. title: Issuer
  19. hint: Issuer string to supply to Identity Provider
  20. order: 2
  21. audience:
  22. type: String
  23. title: Audience
  24. hint: (Optional) - Expected SAML response Audience (if not provided, Audience won't be verified)
  25. order: 3
  26. cert:
  27. type: String
  28. title: Certificate
  29. hint: (Optional) - Public PEM-encoded X.509 signing certificate. If the provider has multiple certificates that are valid, join them together using the | pipe symbol.
  30. order: 4
  31. privateCert:
  32. type: String
  33. title: Private Certificate
  34. hint: (Optional) - PEM formatted key used to sign the certificate.
  35. order: 5
  36. decryptionPvk:
  37. type: String
  38. title: Decryption Private Key
  39. hint: (Optional) - Private key that will be used to attempt to decrypt any encrypted assertions that are received.
  40. order: 6
  41. signatureAlgorithm:
  42. type: String
  43. title: Signature Algorithm
  44. hint: Signature algorithm used for signing requests
  45. order: 7
  46. default: sha1
  47. enum:
  48. - sha1
  49. - sha256
  50. - sha512
  51. identifierFormat:
  52. type: String
  53. title: Name Identifier format
  54. default: 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress'
  55. order: 8
  56. acceptedClockSkewMs:
  57. type: Number
  58. title: Accepted Clock Skew Milleseconds
  59. hint: Time in milliseconds of skew that is acceptable between client and server when checking OnBefore and NotOnOrAfter assertion condition validity timestamps. Setting to -1 will disable checking these conditions entirely.
  60. default: -1
  61. order: 9
  62. disableRequestedAuthnContext:
  63. type: Boolean
  64. title: Disable Requested Auth Context
  65. hint: If enabled, do not request a specific authentication context. This is known to help when authenticating against Active Directory (AD FS) servers.
  66. default: false
  67. order: 10
  68. authnContext:
  69. type: String
  70. title: Auth Context
  71. hint: Name identifier format to request auth context.
  72. default: urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
  73. order: 11
  74. forceAuthn:
  75. type: Boolean
  76. title: Force Initial Re-authentication
  77. hint: If enabled, the initial SAML request from the service provider specifies that the IdP should force re-authentication of the user, even if they possess a valid session.
  78. default: false
  79. order: 12
  80. providerName:
  81. type: String
  82. title: Provider Name
  83. hint: Optional human-readable name of the requester for use by the presenter's user agent or the identity provider.
  84. default: wiki.js
  85. order: 13
  86. skipRequestCompression:
  87. type: Boolean
  88. title: Skip Request Compression
  89. hint: If enabled, the SAML request from the service provider won't be compressed.
  90. default: false
  91. order: 14
  92. authnRequestBinding:
  93. type: String
  94. title: Request Binding
  95. hint: Binding used for request authentication from IDP.
  96. order: 15
  97. default: 'HTTP-POST'
  98. enum:
  99. - HTTP-Redirect
  100. - HTTP-POST
  101. mappingUID:
  102. title: Unique ID Field Mapping
  103. type: String
  104. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier'
  105. hint: The field storing the user unique identifier. Can be a variable name or a URI-formatted string.
  106. order: 16
  107. mappingEmail:
  108. title: Email Field Mapping
  109. type: String
  110. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress'
  111. hint: The field storing the user email. Can be a variable name or a URI-formatted string.
  112. order: 17
  113. mappingDisplayName:
  114. title: Display Name Field Mapping
  115. type: String
  116. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name'
  117. hint: The field storing the user display name. Can be a variable name or a URI-formatted string.
  118. order: 18
  119. mappingPicture:
  120. title: Avatar Picture Field Mapping
  121. type: String
  122. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/picture'
  123. hint: The field storing the user avatar picture. Can be a variable name or a URI-formatted string.
  124. order: 19