This application demonstrates authorization based on group (role) information coming from the identity provider.
Groups are hardcoded into the application without any synchronization with any directory.
- Group information is available from the identity provider
- Small number of fixed groups
- Ensure there is a self-signed cert in the certs directory:
openssl req -x509 -newkey rsa:4096 -sha256 -keyout "certs/key.pem" -out "certs/cert.pem" -nodes -days 365 -subj "/C=CA/ST=Ontario/L=Ottawa/O=Liquid Landscaping/CN=localhost"
- Set environment variables:
SAML_CALLBACK_URL
SAML_ENTRY_POINT
npm start