Versions in this module Expand all Collapse all v0 v0.5.3 Jun 12, 2026 Changes in this version + const DefaultGroupsAttribute + const DefaultReplayWindow + const DefaultUsernameAttribute + var ErrGroupNotAllowed = errors.New("saml: user not in required group") + var ErrMissingSAMLResponse = errors.New("saml: SAMLResponse missing from request") + var ErrParseResponse = errors.New("saml: assertion validation failed") + var ErrReplay = errors.New("saml: assertion replay detected") + var ErrStateMismatch = errors.New("saml: state mismatch") + var ErrUsernameInvalid = errors.New("saml: username failed character validation") + type Config struct + ACSURL string + EntityID string + ForceAuthn bool + GroupsAttribute string + IDPMetadataURL string + IDPMetadataXML string + JITProvision bool + LegacyPermissiveUsername bool + ReplayWindow int + RequireAssertionSigned bool + RequiredGroups []string + SignOnURL string + SigningCertPath string + SigningKeyPath string + UsernameAttribute string + func (c Config) Validate() error + type Provider struct + func NewSAMLProvider(ctx context.Context, cfg Config) (*Provider, error) + func (p *Provider) HandleCallback(_ context.Context, r *http.Request, state auth.State) (auth.ResolvedIdentity, error) + func (p *Provider) LoginURL(_ context.Context, state auth.State) (string, error) + func (p *Provider) LoginURLWithRequestID(state auth.State) (loginURL string, requestID string, err error) + func (p *Provider) Metadata() ([]byte, error) + func (p *Provider) Type() string
Go to main page