Yesterday we released the apostrophe-saml module.
apostrophe-saml provides single sign-on with identity providers based on SAML or Shibboleth. Shibboleth is very common in academic environments and is built on top of SAML, which is common in corporate environments.
This module is separate from apostrophe-passport because that module makes assumptions that are not a good fit for SAML and Shibboleth. apostrophe-passport is well-suited to OpenAuth identity providers like Google, Facebook, etc.
apostrophe-saml will work out of the box for many Shibboleth-based identity providers. For others, you’ll likely want to use the provided attributeMapping
option to finesse how the attributes in your profiles are mapped to Apostrophe schema fields for each user.
Check out the new module here. Thanks!