Open tschaffter opened 4 years ago
SAML was a special requirement for PHC; I think OAuth 2.0 is more commonly used and should probably be given preference. For example, the GA4GH Data Security work stream has been advocating for OAuth2 + OpenID Connect:
At some point we might also want to coordinate with NCATS to see about integrating with their "Unified NCATS Auth" services.
Opened JIRA ticket to create new Google OAuth 2.0 cllient: https://sagebionetworks.jira.com/browse/SWC-5165
The new call back URL will start with https://sbcp.sagesandbox.org
One of the above will be enough for the portal but so far we support both. I want to go through both processes to document them, then I'll keep only SAML.