Chef Ideas

We believe that the best way to build software is to do it in close collaboration with the people who use it. We invite you to submit your ideas using the form below. Please be sure to include the problem for which you are solving and the benefits of implementing the idea.

We do our best to implement as many Ideas as we can. Our Product team will evaluate all submitted ideas in a timely manner and will disposition each into one of the following categories: will integrate into the product roadmap, further research is needed, unlikely to implement.

Thanks for collaborating with us!

Enable Dex's OIDC Support for Automate's SSO capabilities

Currently, A2 only supports LDAP and a limited SAML 2.0 capability for SSO. Many SSO providers are moving off of SAML and using OIDC. A2's auth provider, Dex, supports OIDC and it would benefit a lot of customers if we enabled this capability within Automate as a mechanism for SSO authentication. This is especially needed because Dex does not seem to be maintaining or continuing development on the SAML 2.0 provider, so we are unlikely to be able to meet customer requirements for a more secure SAML connectivity in the future unless we start maintaining and developing that provider ourselves.

Here is the documentation on the OIDC provider in Dex.

https://dexidp.io/docs/connectors/oidc/

  • Davin Taddeo
  • Sep 1 2021
  • Out of Scope
Chef Automate
  • Attach files
  • Kyle Oldrid commented
    24 Jan, 2022 07:08pm

    Voting for this as the SAML Dex Module is marked as depricated and warnings that it may be vulnerable to authentication bypass.

    ×

    Attachments Open full size

Related ideas