shibboleth

package
v2.36.17 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jul 21, 2024 License: MIT Imports: 17 Imported by: 0

README

Shibboleth provider

Instructions

Uses default Shibboleth 3.3 pathing for the entry point. e.g. if url is "https://idp.example.com" and the aws_urn is the default, this will construct the following URL to use. https://idp.example.com/idp/profile/SAML2/Unsolicited/SSO?providerId=urn:amazon:webservices

Features

  • Prompts for Duo MFA when logging in when "mfa" is set to Auto. Options are Duo Push, Phone Call, and Passcode.
  • Supports Duo MFA authorized networks bypass - 2 factor authentication is skipped if invoked from an authorized network
  • Ability to disable MFA. Set 'None' istead of 'Auto'.

Limitations

  • Tested on:
  • Shibboleth 3.3 with Duo MFA;
  • Shibboleth 4.0.1, 4.2.1 with Duo MFA and CSRF tokens.

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Client

type Client struct {
	provider.ValidateBase
	// contains filtered or unexported fields
}

Client wrapper around Shibboleth enabling authentication and retrieval of assertions

func New

func New(idpAccount *cfg.IDPAccount) (*Client, error)

New create a new Shibboleth client

func (*Client) Authenticate

func (sc *Client) Authenticate(loginDetails *creds.LoginDetails) (string, error)

Authenticate authenticate to Shibboleth and return the data from the body of the SAML assertion.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL