search

boxyhq / mock-saml

A simple mock SAML 2.0 Identity Provider
https://mocksaml.com
Apache License 2.0
87 stars 23 forks source link

Feature request: autopopulate and/or hide acs & audience fields #570

Open nbennett25 opened 4 months ago

nbennett25 commented 4 months ago

Normal users don't know anything about SAML things like 'ACS URL' or 'Audience' - they just want to be able to log in and be redirected back to their app.

I know this tool is targeted towards developers, but presumably the fields on the login form for ACS URL and Audience aren't going to change if they're tied to a specific app. It'd be great to be able to autopopulate those with an ENV variable rather than have to copy/paste the acs and metadata urls each time you want to log in; something like 

...
# Base64 encoded value of public key `cat public.crt | base64`
PUBLIC_KEY=
# Base64 encoded value of private key `cat key.pem | base64`
PRIVATE_KEY=

# Set default ACS URL (usually my.app/saml/acs)
ACS_URL=
# Set default Audience (usually my.app/saml/metadata)
AUDIENCE_URL=
...

Those values would then appear in the login form rather than the default boxyhq.com urls.

Added plus would be to set the defaults and then hide those fields from the login form entirely.

deepakprabhakara commented 4 months ago

This makes sense, they apply only to IdP-initiated login. SP login only shows the username/password login form.