OD2 icon indicating copy to clipboard operation
OD2 copied to clipboard
verified publisher icon OregonDigital

make omniauth SAML uid_attribute an ENV variable

Open decimalator opened this issue 3 years ago • 1 comments

Descriptive summary

As we work on the production SAML configuration, I found that the uid_attribute parameter is a static string in the omniauth config. We should make a SAML_UID_ATTRIBUTE environment variable with the value of "urn:oid:0.9.2342.19200300.100.1.1"

If UO's SAML attributes ever changed, we would need to push a code change through our deployment pipeline and schedule a deployment to production. Making this an environment variable would allow us to just change the value and restart.

https://github.com/OregonDigital/OD2/blob/3a3cbb4b0dc2ab4598d66c11816a1a0c754e9dd6/config/initializers/devise.rb#L257-L263

decimalator avatar Jun 28 '22 18:06 decimalator

while we're there, we can update the default issuer to staging.oregondigital.org instead of the defunct od2-staging.library.oregonstate.edu

decimalator avatar Jun 28 '22 18:06 decimalator