Skip to content
Snippets Groups Projects
Select Git revision
  • master default
  • meow-patchset
  • patchset-base
  • fix-alias-resolution-server-list
  • verifiable-forwarded-events
  • v1.127.0rc1
  • meow-patchset-v1.126.0
  • v1.126.0
  • v1.126.0rc3
  • meow-patchset-v1.125.0
  • meow-patchset-v1.126.0rc2
  • v1.126.0rc2
  • v1.126.0rc1
  • v1.125.0
  • v1.125.0rc1
  • v1.124.0
  • v1.124.0rc3
  • v1.124.0rc2
  • v1.124.0rc1
  • v1.123.0
  • v1.123.0rc1
  • v1.122.0
  • v1.122.0rc1
  • v1.121.1
  • v1.121.0
25 results
Blame Permalink
  • Richard van der Hoff's avatar
    c7401a69
    Implement SAML2 authentication (#4267) · c7401a69
    Richard van der Hoff authored 
    This implements both a SAML2 metadata endpoint (at
`/_matrix/saml2/metadata.xml`), and a SAML2 response receiver (at
`/_matrix/saml2/authn_response`). If the SAML2 response matches what's been
configured, we complete the SSO login flow by redirecting to the client url
(aka `RelayState` in SAML2 jargon) with a login token.

What we don't yet have is anything to build a SAML2 request and redirect the
user to the identity provider. That is left as an exercise for the reader.
    Unverified
    c7401a69
    History
    Implement SAML2 authentication (#4267)
    Richard van der Hoff authored 
    This implements both a SAML2 metadata endpoint (at
`/_matrix/saml2/metadata.xml`), and a SAML2 response receiver (at
`/_matrix/saml2/authn_response`). If the SAML2 response matches what's been
configured, we complete the SSO login flow by redirecting to the client url
(aka `RelayState` in SAML2 jargon) with a login token.

What we don't yet have is anything to build a SAML2 request and redirect the
user to the identity provider. That is left as an exercise for the reader.