Welcome to Djangosaml2’s Documentation

See More

A Django application that builds a fully compliant SAML2 Service Provider on top of PySAML2 library. Djangosaml2 protects your project with a SAML2 SSO Authentication, supporting features like HTTP-REDIRECT and HTTP-POST SSO Binding, Single logout, Discovery Service, Wayf page with customizable html template, IdP Hinting, IdP Scoping and Samesite cookie SSO workaround.

The entire project code is open sourced and therefore licensed under the Apache 2.0.

Setup

• Setup
  • Prepare Environment and Install Requirements
• Configuration
  • SameSite cookie
  • Authentication backend
  • Default Login path
  • Handling Post-Login Redirects
  • Redirect URL validation
  • Preferred sso binding
  • Preferred Logout binding
  • Ignore Logout errors
  • Discovery Service
  • Idp hinting
  • IdP scoping
  • Authn Context
  • Custom and dynamic configuration loading
  • Bearer Assertion Replay Attack Prevention
  • CSP Configuration
• Users, attributes and account linking
• Custom user attributes processing
• URLs
• PySAML2 specific files and configuration
  • Signed Logout Request
  • Attribute Map
  • Metadata
  • Certificates

Usage

• Getting Started
• Test IdP

Developer's

• Testing
• Unit tests
• Code Coverage
• Custom error handler
• Contributing

Miscellanea

• SimpleSAMLphp issues
• Okta federation

FAQ

• FAQ

Security considerations

• Introduction
• Content Security Policy