Skip to content
/ passport-saml-example Public
forked from ritstudentgovernment/passport-saml-example

Example node.js/express.js app with SAML authentication for testing/demonstrating SAML authentications with UHN ADFS.

License

View license
0 stars 42 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

data-team-uhn/passport-saml-example

BranchesTags
 
 

Repository files navigation

passport-saml-example

This node.js web application demonstrates SSO authentication provided by a SAML server (such as https://fs.uhn.ca/), using the passport-saml package.

demo.gif

Config

This app requires 3 files to be placed in a folder named cert/saml located in the project's root directory. These files include:

  • idp_cert.pem: The certificate of the Identity Provider (IdP).
  • cert.pem: Your own SAML certificate
  • key.pem: The private key associated with your own SAML certificate.

Next, copy .env.sample to .env and edit appropriately.

Creating Private Key and Certificates

The SP files ( cert/saml/cert.pem, cert/saml/key.pem ) can be generated with the following command (accepting all default options):

openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -nodes -days 900

The IdP Certificate ( idp_cert.pem ) can be obtained through the following commands.

echo "-----BEGIN CERTIFICATE-----" > cert/saml/idp_cert.pem
python3 print_idp_cert_from_url.py --saml_metadata_url https://fs.uhn.ca/FederationMetadata/2007-06/FederationMetadata.xml >> cert/saml/idp_cert.pem
echo "-----END CERTIFICATE-----" >> cert/saml/idp_cert.pem

Registering the Service Provider

The administator of the SAML identity provider (eg. https://fs.uhn.ca) will need to be provided with cert.pem in order to configure SAML authentication for this domain.

Building

For running locally

npm install

For running in Docker

docker build -t data-team-uhn/passport-saml-example .

Usage

Running locally, HTTP-mode

node app.js

Running in Docker, HTTP-mode

docker run --rm -v $(realpath cert):/app/cert:ro -v $(realpath .env):/app/.env:ro -p 127.0.0.1:8080:8080 --name passport-saml-example -d data-team-uhn/passport-saml-example

Running locally, HTTPS-mode

  • Place your cert.pem and key.pem files that you wish to use for securing the connection to the passport-saml-example server in the cert/https/ directory.

  • Start app.js with:

USE_SSL=true node app.js

Running in Docker, HTTPS-mode

  • Place your cert.pem and key.pem files that you wish to use for securing the connection to the passport-saml-example server in the cert/https/ directory.

  • Start the Docker container with the command:

docker run --rm -v $(realpath cert):/app/cert:ro -v $(realpath .env):/app/.env:ro -p 127.0.0.1:8443:8443 -e USE_SSL=true --name passport-saml-example -d data-team-uhn/passport-saml-example

Note: All above mentioned Docker containers can be stopped by running docker stop passport-saml-example.

Note: The logs of the above mentioned Docker containers can be viewed by running docker logs passport-saml-example.

About

Example node.js/express.js app with SAML authentication for testing/demonstrating SAML authentications with UHN ADFS.

Resources

Readme

License

View license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • JavaScript 75.8%
  • Python 21.4%
  • Dockerfile 2.8%