System-End/identity-vault
1
0
Fork 0
mirror of https://github.com/System-End/identity-vault.git synced 2026-04-19 18:35:13 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
identity-vault/config/saml.yml

216 lines
7.3 KiB
YAML
Raw Permalink Blame History

development:
service_providers:
- slug: samltool
allow_idp_initiated: true
friendly_name: samltool.io
tagline: echoes & validates the SAML response. not super useful unless you're hacking on the SAML assertion code...
entity_id: https://samltool.io
assertion_consumer_services:
- location: https://samltool.io
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
- slug: slack
friendly_name: Hack Club Slack
tagline: where most of the magic happens!
icon: slack.png
entity_id: https://slack.com
allowed_attributes:
- User.Email
- email
assertion_consumer_services:
- location: https://wackclub.enterprise.slack.com/sso/saml
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: Slack User Profile
requested_attributes:
- name: User.Email
friendly_name: Email Address
is_required: true
- name: User.Username
friendly_name: Username
is_required: false
- name: User.FirstName
friendly_name: First Name
is_required: false
- name: User.LastName
friendly_name: Last Name
is_required: false
allow_idp_initiated: true
attribute_format: slack
- slug: iam_showcase
allow_idp_initiated: true
friendly_name: IAM Showcase
tagline: Identity management testing
entity_id: IAMShowcase
assertion_consumer_services:
- location: https://sptest.iamshowcase.com/acs
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: IAM showcase test profile
requested_attributes:
- name: email
friendly_name: Email Address
is_required: true
- name: firstName
friendly_name: Given Name
is_required: false
- name: lastName
friendly_name: Surname
is_required: false
allow_unsigned_requests: true
- slug: airtable
allow_idp_initiated: true
friendly_name: Airtable
tagline: spreadsheets, but make it a database
icon: airtable.png
entity_id: https://airtable.com/sso/metadata0418.xml
allowed_emails:
- nora@hackclub.com
- max@hackclub.com
assertion_consumer_services:
- location: https://airtable.com/auth/ssoCallback
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: Airtable User Profile
requested_attributes:
- name: email
friendly_name: Email Address
is_required: true
- name: firstName
friendly_name: First Name
is_required: false
- name: lastName
friendly_name: Last Name
is_required: false
allow_unsigned_requests: true
idp_metadata:
entity_id: https://identity.hackclub.dev
single_sign_on_services:
- location: http://localhost:3000/saml/auth
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
shared:
idp_metadata:
organization:
name: Hack Club
display_name: Hack Club
url: https://hackclub.com
contacts:
- type: technical
company: Hack Club
given_name: Nora
surname: R.
email_addresses: [nora@hackclub.com]
- type: support
company: Hack Club
given_name: Nora
surname: R.
email_addresses: [nora@hackclub.com]
staging:
idp_metadata:
entity_id: https://hca.dinosaurbbq.org
single_sign_on_services:
- location: https://hca.dinosaurbbq.org/saml/auth
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
service_providers:
- slug: samltool
allow_idp_initiated: true
friendly_name: samltool.io
tagline: check your assertions!
entity_id: https://samltool.io
assertion_consumer_services:
- location: https://samltool.io
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
uat:
idp_metadata:
entity_id: https://identity-uat.hackclub.dev
service_providers:
- slug: slack
friendly_name: Hack Club Slack
tagline: where most of the magic happens!
icon: slack.png
entity_id: https://slack.com
allowed_attributes:
- User.Email
- email
assertion_consumer_services:
- location: https://hackclub-sandbox.enterprise.slack.com/sso/saml
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: Slack User Profile
requested_attributes:
- name: User.Email
friendly_name: Email Address
is_required: true
- name: User.Username
friendly_name: Username
is_required: false
- name: User.FirstName
friendly_name: First Name
is_required: false
- name: User.LastName
friendly_name: Last Name
is_required: false
allow_idp_initiated: true
attribute_format: slack
allow_unsigned_requests: true
production:
idp_metadata:
entity_id: https://auth.hackclub.com
single_sign_on_services:
- location: https://auth.hackclub.com/saml/auth
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
service_providers:
- slug: slack
friendly_name: Hack Club Slack
tagline: where most of the magic happens!
icon: slack.png
entity_id: https://slack.com
allowed_attributes:
- User.Email
- email
assertion_consumer_services:
- location: https://hackclub.enterprise.slack.com/sso/saml
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: Slack User Profile
requested_attributes:
- name: User.Email
friendly_name: Email Address
is_required: true
- name: User.Username
friendly_name: Username
is_required: false
- name: User.FirstName
friendly_name: First Name
is_required: false
- name: User.LastName
friendly_name: Last Name
is_required: false
allow_idp_initiated: true
allow_unsigned_requests: true
attribute_format: slack
- slug: airtable
allow_idp_initiated: true
friendly_name: Airtable
tagline: spreadsheets, but make it a database
icon: airtable.png
entity_id: https://airtable.com/sso/metadata0418.xml
allowed_emails:
- nora@hackclub.com
- max@hackclub.com
assertion_consumer_services:
- location: https://airtable.com/auth/ssoCallback
binding: urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
attribute_consuming_services:
- name: Airtable User Profile
requested_attributes:
- name: email
friendly_name: Email Address
is_required: true
- name: firstName
friendly_name: First Name
is_required: false
- name: lastName
friendly_name: Last Name
is_required: false
allow_unsigned_requests: true
Reference in a new issue View git blame Copy permalink