richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1170 Commits
3 Branches
120 Tags
81 MiB
Tree: ccc6a776fc
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ccc6a776fc'
${ noResults }
wiki/server/modules/authentication/saml/definition.yml

127 lines
4.5 KiB
Raw Normal View History

feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: auth jwt, permissions, login ui (wip)
6 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
fix: git private key alt paste mode
5 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
fix: git private key alt paste mode
5 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
fix: git private key alt paste mode
5 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
feat: admin UI fixes + SAML strategy + dashboard gql
6 years ago
feat: SAML auth module
5 years ago
  1. key: saml
  2. title: SAML 2.0
  3. description: Security Assertion Markup Language 2.0 (SAML 2.0) is a version of the SAML standard for exchanging authentication and authorization data between security domains.
  4. author: requarks.io
  5. logo: https://static.requarks.io/logo/saml.svg
  6. color: red darken-3
  7. website: https://wiki.oasis-open.org/security/FrontPage
  8. isAvailable: true
  9. useForm: false
  10. props:
  11. entryPoint:
  12. type: String
  13. title: Entry Point
  14. hint: Identity provider entrypoint (URL)
  15. order: 1
  16. issuer:
  17. type: String
  18. title: Issuer
  19. hint: Issuer string to supply to Identity Provider
  20. order: 2
  21. audience:
  22. type: String
  23. title: Audience
  24. hint: (Optional) - Expected SAML response Audience (if not provided, Audience won't be verified)
  25. order: 3
  26. cert:
  27. type: String
  28. title: Certificate
  29. hint: (Optional) - Public PEM-encoded X.509 signing certificate. If the provider has multiple certificates that are valid, join them together using the | pipe symbol.
  30. multiline: true
  31. order: 4
  32. privateCert:
  33. type: String
  34. title: Private Certificate
  35. hint: (Optional) - PEM formatted key used to sign the certificate.
  36. multiline: true
  37. order: 5
  38. decryptionPvk:
  39. type: String
  40. title: Decryption Private Key
  41. hint: (Optional) - Private key that will be used to attempt to decrypt any encrypted assertions that are received.
  42. multiline: true
  43. order: 6
  44. signatureAlgorithm:
  45. type: String
  46. title: Signature Algorithm
  47. hint: Signature algorithm used for signing requests
  48. order: 7
  49. default: sha1
  50. enum:
  51. - sha1
  52. - sha256
  53. - sha512
  54. identifierFormat:
  55. type: String
  56. title: Name Identifier format
  57. default: 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress'
  58. order: 8
  59. acceptedClockSkewMs:
  60. type: Number
  61. title: Accepted Clock Skew Milleseconds
  62. hint: Time in milliseconds of skew that is acceptable between client and server when checking OnBefore and NotOnOrAfter assertion condition validity timestamps. Setting to -1 will disable checking these conditions entirely.
  63. default: -1
  64. order: 9
  65. disableRequestedAuthnContext:
  66. type: Boolean
  67. title: Disable Requested Auth Context
  68. hint: If enabled, do not request a specific authentication context. This is known to help when authenticating against Active Directory (AD FS) servers.
  69. default: false
  70. order: 10
  71. authnContext:
  72. type: String
  73. title: Auth Context
  74. hint: Name identifier format to request auth context.
  75. default: urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
  76. order: 11
  77. forceAuthn:
  78. type: Boolean
  79. title: Force Initial Re-authentication
  80. hint: If enabled, the initial SAML request from the service provider specifies that the IdP should force re-authentication of the user, even if they possess a valid session.
  81. default: false
  82. order: 12
  83. providerName:
  84. type: String
  85. title: Provider Name
  86. hint: Optional human-readable name of the requester for use by the presenter's user agent or the identity provider.
  87. default: wiki.js
  88. order: 13
  89. skipRequestCompression:
  90. type: Boolean
  91. title: Skip Request Compression
  92. hint: If enabled, the SAML request from the service provider won't be compressed.
  93. default: false
  94. order: 14
  95. authnRequestBinding:
  96. type: String
  97. title: Request Binding
  98. hint: Binding used for request authentication from IDP.
  99. order: 15
  100. default: 'HTTP-POST'
  101. enum:
  102. - HTTP-Redirect
  103. - HTTP-POST
  104. mappingUID:
  105. title: Unique ID Field Mapping
  106. type: String
  107. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier'
  108. hint: The field storing the user unique identifier. Can be a variable name or a URI-formatted string.
  109. order: 16
  110. mappingEmail:
  111. title: Email Field Mapping
  112. type: String
  113. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress'
  114. hint: The field storing the user email. Can be a variable name or a URI-formatted string.
  115. order: 17
  116. mappingDisplayName:
  117. title: Display Name Field Mapping
  118. type: String
  119. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name'
  120. hint: The field storing the user display name. Can be a variable name or a URI-formatted string.
  121. order: 18
  122. mappingPicture:
  123. title: Avatar Picture Field Mapping
  124. type: String
  125. default: 'http://schemas.xmlsoap.org/ws/2005/05/identity/claims/picture'
  126. hint: The field storing the user avatar picture. Can be a variable name or a URI-formatted string.
  127. order: 19