Margasado is a docker image of Margarita with optional SAML auth, combined via docker-compose in this repo with Groob's macadmins/reposado docker image. The goal of this repository is to make spinning up a new margarita + reposado instance extremely simple, while also delivering SAML auth.
- Clone this repository, enter directory
- Set up your certs directory
SAML_AUTH_ENABLED=True SAML_PATH=/path/to/your/saml/certs python run.py
- Debugging your SAML auth?
DEBUG=True SAML_AUTH_ENABLED=True docker-compose up
- Reference: https://github.com/onelogin/python-saml#how-it-works
- Obtain a certificate from your IDP (eg: Okta, OneLogin).
- Fill required fields in saml/settings.json
- You will get the values from your IDP.
- The following the hardcoded acs path for margarita (your IDP will ask for this):
<domain.where.margarita.lives>/saml2/acs
- Place your private cert in $SAML_PATH/certs/
- Start the app with SAML_AUTH_ENABLED=True