SAML & SSO with Nexus OSS 3.1?

1,595 views
Skip to first unread message

Brooke Gravitt

unread,
Mar 16, 2017, 7:41:41 PM3/16/17
to Nexus Users
Hello! Wondering if anyone has configured Nexus to allow SSO via SAML iDP? We're moving all our infrastructure to token-based auth, and Nexus & Sonar are our last pieces of the puzzle.

Thx,

Brooke

Grierson, David

unread,
Mar 17, 2017, 4:51:12 AM3/17/17
to Brooke Gravitt, Nexus Users
This is a funny one ... SAML for what aspect of Nexus - all requests or just the UI?

If it's all requests then you're going to have to somehow authenticate all of those maven/docker/npm/etc. clients with SAML token prior to their dependency retrieval etc.

I'm not saying that that can't be done - just pointing out that that's going to be an inordinately large amount of pain for someone joining your development teams and getting their set-up working.

Hey, maybe you've already solved this issue; I just thought I'd point it out.

Dg.

Thx,

Brooke

--
You received this message because you are subscribed to the Google Groups "Nexus Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to nexus-users...@glists.sonatype.com.
To post to this group, send email to nexus...@glists.sonatype.com.
To view this discussion on the web visit https://groups.google.com/a/glists.sonatype.com/d/msgid/nexus-users/df976d5d-d678-4420-b94a-92824b356a7c%40glists.sonatype.com.
For more options, visit https://groups.google.com/a/glists.sonatype.com/d/optout.

Information in this email including any attachments may be privileged, confidential and is intended exclusively for the addressee. The views expressed may not be official policy, but the personal views of the originator. If you have received it in error, please notify the sender by return e-mail and delete it from your system. You should not reproduce, distribute, store, retransmit, use or disclose its contents to anyone. Please note we reserve the right to monitor all e-mail communication through our internal and external networks. SKY and the SKY marks are trademarks of Sky plc and Sky International AG and are used under licence.
Sky UK Limited (Registration No. 2906991), Sky-In-Home Service Limited (Registration No. 2067075) and Sky Subscribers Services Limited (Registration No. 2340150) are direct or indirect subsidiaries of Sky plc (Registration No. 2247735). All of the companies mentioned in this paragraph are incorporated in England and Wales and share the same registered office at Grant Way, Isleworth, Middlesex TW7 5QD.

Charlie Mordant

unread,
Jun 20, 2018, 4:57:26 AM6/20/18
to Nexus Users, bro...@gravitt.org
And for the UI?
It should be nice to allow everyone within a company to be able to create a repository and enter their ssh keys, then let them push into it without our approbation with token, ssl, whatever.

Regards
Reply all
Reply to author
Forward
0 new messages