Initial support for SAML authentication

1 files changed, 16 insertions, 0 deletions

diff --git a/config.json.example b/config.json.example
index bd7ab043..db1dd94f 100644
--- a/config.json.example
+++ b/config.json.example
@@ -75,6 +75,22 @@
                 "changeme": "See https://nodejs.org/api/tls.html#tls_tls_connect_options_callback"
             }
         },
+        "saml": {
+            "idpSsoUrl": "change: authentication endpoint of IdP",
+            "idpCert": "change: certificate file path of IdP in PEM format",
+            "issuer": "change or delete: identity of the service provider (default: serverurl)",
+            "callbackUrl": "change or delete: callback url to consume assertions (default: serverurl+'/auth/saml/callback')",
+            "identifierFormat": "change or delete: name identifier format (default: 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress')",
+            "groupAttribute": "change or delete: attribute name for group list (ex: memberOf)",
+            "requiredGroups": [ "change or delete: group names that allowed" ],
+            "externalGroups": [ "change or delete: group names that not allowed" ],
+            "attribute": {
+               "id": "change or delete this: attribute map for `id` (default: NameID)",
+               "username": "change or delete this: attribute map for `username` (default: NameID)",
+               "displayName": "change or delete this: attribute map for `displayName` (default: NameID)",
+               "email": "change or delete this: attribute map for `email` (default: NameID)"
+            }
+        },
         "imgur": {
             "clientID": "change this"
         },