README
¶
AzureAD
This provider uses SAML with AzureAD Enterprise applications to enable authentication of users to AWS.
prerequisites
Setup your AzureAD Enterprise applications and AWS Account as per one of the configuration guides.
- How to automate SAML federation to multiple AWS accounts from Microsoft Azure Active Directory
- Tutorial: Integrate Amazon Web Services (AWS) with Azure Active Directory
configuration
The URL of IdP-initiate SSO is as follows.
https://account.activedirectory.windowsazure.com/applications/redirecttofederatedapplication.aspx?Operation=LinkedSignIn&applicationId=xxxxxxxx-xxx-xxx-xxx-xxxxxxxxxxxx
Now, URL must be configured https://account.activedirectory.windowsazure.com.
Where the following attributes are replace with:
xxxxxxxx-xxx-xxx-xxx-xxxxxxxxxxxxis application-id for your AzureAD Enterprise applications.
2-factor support
Currently this provider supports:
- PhoneAppOTP
- PhoneAppNotification
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Client ¶
type Client struct {
// contains filtered or unexported fields
}
Client wrapper around AzureAD enabling authentication and retrieval of assertions
func (*Client) Authenticate ¶
func (ac *Client) Authenticate(loginDetails *creds.LoginDetails) (string, error)
Authenticate to AzureAD and return the data from the body of the SAML assertion.
type SkipMfaResponse ¶
type SkipMfaResponse struct {
URLPostRedirect string `json:"urlPostRedirect"`
URLSkipMfaRegistration string `json:"urlSkipMfaRegistration"`
URLMoreInfo string `json:"urlMoreInfo"`
SProofUpToken string `json:"sProofUpToken"`
SProofUpTokenName string `json:"sProofUpTokenName"`
SProofUpAuthState string `json:"sProofUpAuthState"`
SCanaryToken string `json:"sCanaryToken"`
IRemainingDaysToSkipMfaRegistration int `json:"iRemainingDaysToSkipMfaRegistration"`
IMaxStackForKnockoutAsyncComponents int `json:"iMaxStackForKnockoutAsyncComponents"`
StrCopyrightTxt string `json:"strCopyrightTxt"`
FShowButtons bool `json:"fShowButtons"`
URLCdn string `json:"urlCdn"`
URLPost string `json:"urlPost"`
URLCancel string `json:"urlCancel"`
IPawnIcon int `json:"iPawnIcon"`
SPOSTUsername string `json:"sPOST_Username"`
SFT string `json:"sFT"`
SFTName string `json:"sFTName"`
SCanaryTokenName string `json:"sCanaryTokenName"`
DynamicTenantBranding []struct {
Locale int `json:"Locale"`
Illustration string `json:"Illustration"`
UserIDLabel string `json:"UserIdLabel"`
KeepMeSignedInDisabled bool `json:"KeepMeSignedInDisabled"`
UseTransparentLightBox bool `json:"UseTransparentLightBox"`
} `json:"dynamicTenantBranding"`
OAppCobranding struct {
} `json:"oAppCobranding"`
IBackgroundImage int `json:"iBackgroundImage"`
FUseConstantPolling bool `json:"fUseConstantPolling"`
FUseFlowTokenAsCanary bool `json:"fUseFlowTokenAsCanary"`
FApplicationInsightsEnabled bool `json:"fApplicationInsightsEnabled"`
IApplicationInsightsEnabledPercentage int `json:"iApplicationInsightsEnabledPercentage"`
URLSetDebugMode string `json:"urlSetDebugMode"`
FEnableCSSAnimation bool `json:"fEnableCssAnimation"`
FAllowGrayOutLightBox bool `json:"fAllowGrayOutLightBox"`
FIsRemoteNGCSupported bool `json:"fIsRemoteNGCSupported"`
Scid int `json:"scid"`
Hpgact int `json:"hpgact"`
Hpgid int `json:"hpgid"`
Pgid string `json:"pgid"`
APICanary string `json:"apiCanary"`
Canary string `json:"canary"`
CorrelationID string `json:"correlationId"`
SessionID string `json:"sessionId"`
Locale struct {
Mkt string `json:"mkt"`
Lcid int `json:"lcid"`
} `json:"locale"`
SlMaxRetry int `json:"slMaxRetry"`
SlReportFailure bool `json:"slReportFailure"`
Strings struct {
Desktopsso struct {
Authenticatingmessage string `json:"authenticatingmessage"`
} `json:"desktopsso"`
} `json:"strings"`
Enums struct {
ClientMetricsModes struct {
None int `json:"None"`
SubmitOnPost int `json:"SubmitOnPost"`
SubmitOnRedirect int `json:"SubmitOnRedirect"`
InstrumentPlt int `json:"InstrumentPlt"`
} `json:"ClientMetricsModes"`
} `json:"enums"`
Urls struct {
Instr struct {
Pageload string `json:"pageload"`
Dssostatus string `json:"dssostatus"`
} `json:"instr"`
} `json:"urls"`
Browser struct {
Ltr int `json:"ltr"`
Other int `json:"_Other"`
Full int `json:"Full"`
REOther int `json:"RE_Other"`
B struct {
Name string `json:"name"`
Major int `json:"major"`
Minor int `json:"minor"`
} `json:"b"`
Os struct {
Name string `json:"name"`
Version string `json:"version"`
} `json:"os"`
V int `json:"V"`
} `json:"browser"`
Watson struct {
URL string `json:"url"`
Bundle string `json:"bundle"`
Sbundle string `json:"sbundle"`
Fbundle string `json:"fbundle"`
ResetErrorPeriod int `json:"resetErrorPeriod"`
MaxCorsErrors int `json:"maxCorsErrors"`
MaxInjectErrors int `json:"maxInjectErrors"`
MaxErrors int `json:"maxErrors"`
MaxTotalErrors int `json:"maxTotalErrors"`
ExpSrcs []string `json:"expSrcs"`
EnvErrorRedirect bool `json:"envErrorRedirect"`
EnvErrorURL string `json:"envErrorUrl"`
} `json:"watson"`
Loader struct {
CdnRoots []string `json:"cdnRoots"`
} `json:"loader"`
ServerDetails struct {
Slc string `json:"slc"`
Dc string `json:"dc"`
Ri string `json:"ri"`
Ver struct {
V []int `json:"v"`
} `json:"ver"`
Rt string `json:"rt"`
Et int `json:"et"`
} `json:"serverDetails"`
Country string `json:"country"`
FBreakBrandingSigninString bool `json:"fBreakBrandingSigninString"`
URLNoCookies string `json:"urlNoCookies"`
FTrimChromeBssoURL bool `json:"fTrimChromeBssoUrl"`
}
Autogenerated skip mfa login response
Source Files
Click to show internal directories.
Click to hide internal directories.