I have an application created using Django that uses MSAL library to authenticate with Azure AD.
As I understand, MSAL uses OAuth and so far the authentication/authorization works great. Is there a way to implement authentication using SAML instead of OAuth. I came across pysaml2 library but doesn't have sufficient documentation to integrate with Azure AD. Can someone please share your thoughts.
Is there a way to implement authentication using SAML instead of
OAuth.
No it's not possible to use SAML authentication in MSAL library.MSAL does not support SAML. It only supports OAuth / OpenID Connect.
Similar kind of request also raised on StackOverflow and Microsoft Q&A as well you can check for more information
SAML is devloped by the Security Services Technical Committee of OASIS (Organization for the Advancement of Structured Information Standards) not by Microsoft so this might be the reason SAML is not included in MSAL Library.
Related
I am implementing a project using simple-salesforce so I can manage and trigger events on Salesforce Marketing Cloud. The problem I have encountered is that the documentation is not explicit if I can use simple-salesforce to access the Marketing Cloud endpoints.
I've noticed even that the login method on simple-salesforce can't be done by the Salesforce Marketing Cloud credentials. When I try to do this I get:
SalesforceAuthenticationFailed: INVALID_LOGIN: Invalid username, password, security token; or user locked out.
Did someone have the same issue? Can I access the Salesforce Marketing Cloud through simple-salesforce?
simple_salesforce is for the Salesforce CRM platform. It provides no support for Marketing Cloud, which has distinct APIs, of any kind. You'll need to use one of the Marketing Cloud SDKs instead.
I am not a Marketing Cloud expert, but this appears to be the relevant official documentation for the Marketing Cloud SOAP API, and for the Python SDK. There's also a REST API that you can call with any Python HTTP client. There may also be third-party or community libraries available.
I have successfully created Azure AD authentication using MSAL in the angular application, after that I passed the token to Django and validated the token from the azure.
Now I want to implement the SAML2 in Azure AD authentication.
Using this article https://learn.microsoft.com/en-us/azure/active-directory/saas-apps/saml-toolkit-tutorial, I have created SAML toolkit for Azure AD and got login url, logout url, AD Identifier url and certificate. Using this information, I don't know how to implement Azure AD authentication in angular or python.
I have read lot of article, nothing worked.
This toolkit is simply an application used to test access to an Azure AD Enterprise application using SAML.
From the client-side, you need to add a client-side SAML stack to your code.
On the Azure AD side, you connect this stack to an Enterprise application.
There are comments relating to the ADAL / MSAL libraries. You cannot use these as they rely on OpenID Connect not SAML!
#Shakthifuture
Have you checked this StackOverflow answer part:
SAML Authentication in Angular app Using Azure AD
I have used this library to implement to SAML authentication using Django.
pip install django_saml2_auth
this library supports JWT token and uses Angular or any front-end application with Django
https://github.com/fangli/django-saml2-auth
Is there a 3rd party package to handle authentication for Django via OAuth? I've looked into OAuth Toolkit but it only seems to be a provider that provision tokens. I'm looking for something that can consume an existing provider much like All Auth does with Google, Facebook, etc. The problem is that I want to integrate with a private provider, not a popular social provider as mentioned above. Is there any package that could do this or do I have to write the OAuth flow entirely by myself?
I am trying to see some example of how to connect to atlassian bitbucket (used to be STASH) API and I don't see any examples of how does one authenticate to start retrieving data like, projects, repos etc.
You probably want to use OAuth for authentication instead of user passwords and basic auth. For this you need to have an application link in place. I blogged about how to communicate with Atlassian applications by using OAuth in Python here. This will also work in Bitbucket Server.
Hope this helps.
Cheers,
Michael
when using soaplib to writing API, I want to do authentication before client can do any operation.
But I can't find any authentication info on the soaplib doc.
Please help!