Technical & Scientific > Programming

Anyone know a SAML expert?

(1/3) > >>

Mike:
We've got a SAML IdP tied into our old system using SimpleSAMLPHP that we are trying to tie into our new Python systems.  Unfortunately, there aren't that many Python IdP implementations and we are reaching the point where I don't think we have enough knowledge of SAML to implement it securely.  So, we are considering getting a contractor who does have the knowledge for a short term engagement.

hans:
I remember it being a pain to work with. (back in my Java/Groovy days)

Which SAML provider did you go with? That might help determine what Python lib you might want to use if they have an implementation for you. If I remember ones like Auth0 had client libs available for most languages.

Mike:

--- Quote from: hans on July 13, 2021, 11:01:31 AM ---I remember it being a pain to work with. (back in my Java/Groovy days)

--- End quote ---
Understatement right there


--- Quote ---Which SAML provider did you go with? That might help determine what Python lib you might want to use if they have an implementation for you. If I remember ones like Auth0 had client libs available for most languages.

--- End quote ---
We are the identity provider (IdP).  The service provider (SP) side is actually pretty easy and we have that done already.  The provider side is where the pain is.  Everyone wants to be a consumer but no-one wants to be the provider ;)

We actually did look at using a 3rd party service but there cost is far too high.  I could almost employee a full-time programmer for the yearly cost.

ober:
Yeah, we're implementing Auth0.  Not cheap, but worth it.  Of course our primary engineer left the company so we're looking for someone too.

Mike:
Hmmm, did a quick review of Auth0 and their pricing seemed a lot better than what our guy reported.  The best I was seeing was $2 / user / month.  Even if I cull our database those that that could potentially use the system I'm still left with well over $100K (probably looking at 2 to 3 times that) a year in costs.  We are still well over Auth0's free tier but they seem much more reasonable.

Navigation

[0] Message Index

[#] Next page

Go to full version