Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Tutorial proposal: Using Ethereum for SAML authentication #15109

Open
1 of 2 tasks
qbzzt opened this issue Mar 15, 2025 · 3 comments
Open
1 of 2 tasks

Tutorial proposal: Using Ethereum for SAML authentication #15109

qbzzt opened this issue Mar 15, 2025 · 3 comments
Assignees
@qbzzt
Labels
content 🖋️ This involves copy additions or edits feature ✨ This is enhancing something existing or creating something new

Comments

@qbzzt
Copy link
Contributor

qbzzt commented Mar 15, 2025
edited
Loading

Tutorial title

Using Ethereum for web2 authentication

Tutorial description

After reading this tutorial, a developer will be able to integrate Ethereum login (web3) with SAML login (a standard used in web2 to provide single sign-on and other related services. This will allow access to web2 resources to be authenticated through Ethereum signatures, with the user attributes coming from attestations.

The point is to integrate Ethereum security gradually into legacy web2 services.

Tutorial tags

web2, authentication

Skill level

Beginner

Hosted on ethereum.org or hosted elsewhere?

Hosted on ethereum.org

For tutorials to be hosted on Ethereum.org: Tutorial Content

  1. Introduction: Why do this?
    1. SAML for Ethereum people
    2. Ethereum for SAML people
  2. Setup
    1. Creating a SAML service provider (SP)
    2. Creating a (for now) traditional SAML identity provider (IdP)
  3. Signing in
    1. Getting a signature through a wallet
    2. Using that signature for SAML
  4. User attributes
    1. Why? The service provider might not know the user
    2. Getting user attributes from EAS
    3. Passing those user attributes to the SP.
  5. Conclusion
    1. When is this a good solution?
    2. Using MPC to remove the IdP's ability to cheat (just the idea, but I might implement it in a sequel article)

For tutorials hosted elsewhere: URL to tutorial

No response

Would you like to work on this issue?

  • Yes
  • No
@qbzzt qbzzt added content 🖋️ This involves copy additions or edits feature ✨ This is enhancing something existing or creating something new labels Mar 15, 2025
@github-actions github-actions bot added the needs triage 📥 This issue needs triaged before being worked on label Mar 15, 2025
@qbzzt qbzzt changed the title Using Ethereum for SAML authentication Tutorial proposal: Using Ethereum for SAML authentication Mar 15, 2025
@qbzzt
Copy link
Contributor Author

qbzzt commented Mar 15, 2025

@wackerow

@wackerow wackerow removed the needs triage 📥 This issue needs triaged before being worked on label Mar 15, 2025
@wackerow
Copy link
Member

Sounds great! thanks @qbzzt... have assigned

@qbzzt
Copy link
Contributor Author

qbzzt commented Mar 15, 2025

Note: There has been work on this, but https://ethglobal.com/showcase/saml-wallet-d738w is going the opposite direction (adding Ethereum to a traditional IdP), and https://github.com/gtaschuk/saml-eth hasn't been modified in five years.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@qbzzt qbzzt

Labels
content 🖋️ This involves copy additions or edits feature ✨ This is enhancing something existing or creating something new
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@qbzzt @wackerow