Is anyone using SAML for authentication? There is a feature request for SAML support on GitHub ( https://github.com/galaxyproject/galaxy/issues/3146), but it doesn't look like any work has been done.

We need to add the ability for our users to authenticate with a SAML identity provider (IdP), in particular with InCommon/EduRoam/EduCause et al. Looking at the documentation there appears to be "the old way" (configuring Apache/Nginx to do the authentication) and "the new way" where Galaxy handles the authentication. Is it correct to assume that to use the new way I should implement an external authenticator, something like galaxy/auth/providers/saml.py and then some sort of magic to get a config/auth_conf.xml working?

I just want to make sure I am heading down the correct path before investing too much time.

- Keith

Keith Suderman Research Associate Department of Computer Science Vassar College, Poughkeepsie NY suderman@cs.vassar.edu