zlacker

[return to "Launch HN: SSOReady (YC W24) – Making SAML SSO painless and open source"]
1. dqh+gN1[view] [source] 2024-07-31 10:02:38
>>ucario+(OP)
Thank you for this, it’s sorely needed.

One thing I didn’t see mention of is group membership. Is this / will this be part of the core offering? Being able to map IDP group membership to permissions within your SaaS is powerful, and in my experience highly desired by clients.

◧◩
2. ucario+YA2[view] [source] 2024-07-31 16:47:08
>>dqh+gN1
Yeah, we have this -- if you check out the docs for the endpoint where you accept a SAML login[1], there's an `attributes` (map<string, string>) that SSOReady returns to you. That contains the contents of the relevant SAML assertion's AttributeStatement.

So if you're familiar with Okta's parlance, both "Attribute Statements" and "Group Attribute Statements" are returned to you in `attributes`.

[1]: https://ssoready.com/docs/api-reference/saml/redeem-saml-acc...

◧◩◪
3. dqh+cv3[view] [source] 2024-07-31 22:45:03
>>ucario+YA2
Magnificent, thank you!
[go to top]