Service Configuration

Deianira may be configured by adding the appropriate section under the Authentication Providers configuration section.

The following example assumes the private keys and certificates are placed in the root of the checkout.

The IdP’s metadata should similarly be added as metadata under options. This file was downloaded as part of setting up the IdP in the [previous step].

Multiple IdPs are supported, each having a unique id with a description. Ensure the algorithm, digest_algorithm and aspects match up with how the IdP has been set up.

Refer to the configuration classes for more detailed information.

authentication:
  # other details/providers omitted
  providers:
    - id: oktasaml
      description: Okta SAML
      enabled: true
      options:
        strategy: saml
        issuer: https://uat.asterias.io
        metadata: ./okta-metadata.xml
        signing:
          algorithm: sha256
          digest_algorithm: sha256
          aspects: assertions
          key: ./saml-sign.key
          certificate: ./saml-sign.crt
        decryption:
          enabled: true
          key: ./saml-decrypt.key
          certificate: ./saml-decrypt.crt

IdP Setup