Open jameshbarton opened 1 year ago
Any Updates on this issue? We are looking to use a similar approach here.
This issue has been marked as stale because of no activity in the last 180 days. It will be closed in the next 180 days unless it is tagged "no stalebot" or other activity occurs.
Version
1.13.x (latest stable)
Is your feature request related to a problem? Please describe.
Customers frequently want to use SAML to manage authNZ from the Edge gateway. This is currently not supported.
Describe the solution you'd like
Support SAML as a first-class option in the
AuthConfig
API, just like OIDC and LDAP.Describe alternatives you've considered
For the particular customer driving this request, they are an Azure AD user. A good solution to avoid using an older technology such as LDAP could be to use OIDC. If your active directory is synced to Azure AD -- as theirs is -- then you could use OIDC to connect and authenticate against Azure AD. Depending on workstation policies, usually the user account is automatically read from the local PC and used or presented to the user as a choice to use for authentication. Gloo Edge will then authenticate against Azure AD and redirect to the designated path.
Additional Context
No response