This repo contains:
- a passport-strategy that implements SPID authentication
- a method that configures an express endpoint to serve Service Provider metadata
- a scheduled procedure that refreshes IDP metadata from the SPID registry
- a redis cache provider to validate SAML InResponseTo field
You may use this package if you're going to implement a SPID Service Provider with a NodeJS express server.
Beware that any changes to the method signatures of
SAML.prototype.generateAuthorizeRequest and
SAML.prototype.validatePostResponse must be reflected inside the
CustomSamlClient class.
That's why the version of passport-saml in package.json is currently fixed at
1.2.0.