dependency-track icon indicating copy to clipboard operation
dependency-track copied to clipboard
verified publisher icon DependencyTrack

Add SAML integration

Open nille opened this issue 5 years ago • 4 comments

The enhancement may already be reported! Please search for the enhancement before creating one.

Current Behavior:

Currently only Single Sign-On via LDAP is supported, with support for OIDC coming i v. 4.

Proposed Behavior:

Add support for Single Sign-On via SAML. I am no java developer myself but this looks interesting to me: http://www.pac4j.org/ Perhaps something that could be used?

nille avatar Dec 14 '20 08:12 nille

Is SAML on the roadmap yet? @stevespringett

Legeril avatar Apr 04 '23 19:04 Legeril

SAML support is a key feature for many enterprises.

peterloron avatar Apr 26 '23 03:04 peterloron

@peterloron Enterprises are more than welcome to contribute features they want :p

In all seriousness, with both LDAP and OIDC available there is currently no plan to implement SAML support from the core project team. But contributions are welcome, thus the "help wanted" label.

nscuro avatar Apr 26 '23 11:04 nscuro

You realise this is an incredibly shortsighted approach, I appreciate this project has limited resources but a lot of large organisations have standardised on SAML for SSO and require this, it would be good to at least have it on the RM, especially with SBOM and analysis tools such as this now gaining traction in the security community.

krystan avatar Oct 15 '24 08:10 krystan