Casdoor can be configured to support user login to the UI using identities from external identity providers that support SAML 2.0. In this configuration, Casdoor never stores any credentials for the users.
Now, Casdoor supports multiple SAML application providers. Icons of the providers will be displayed on the login page after being added to Casdoor. Here are the providers that Casdoor supports:
- Service Provider (SP) - The service that provides resources to the end user, in this case, the Casdoor deployment.
When using SAML SSO, users log into Casdoor via the identity provider without ever passing credentials to Casdoor. 进展情况见下图表。