How do you test your setup of omniauth-saml in your Rails app?

[epugh]

Hi, I am steward of Quepid (https://github.com/o19s/quepid), a Rails based tool for measuring and improving your search. We use omniauth for authentication, and currently support google oauth, keycloak, and now would like to add https://github.com/omniauth/omniauth-saml.

Normally I try to stand up some sort of "test harness" or "demo setup" to test the integration with Quepid against, however since Quepid is open source and we don't use SAML internally at my company, I'm at a bit of a loss to know how to test this strategy.

Are there any public SAML sites, or a way of configuring a tool like Keycloak to speak SAML that I could use?

Does this question even make any sense ;-).

[suprnova32]

I believe you can set up an Okta trial account for testing and that will give you access to a SAML service. I used that approach when adding SAML support to GitLab. The only issue is that the trial time is short, so if you want to have a permanent setup for testing you would have to pay for it.

[Wimpje]

If you want to test with an online IDP - go to https://idp.ssocircle.com/sso/UI/Login, create a password, and then go to 'Manage Metadata' and add a new service provider. Copy paste the contents of your metadata into the SAML metadate field and use your localhost url as FDQN, that should do the trick...

[epugh]

This is two great suggestions... Part of my challenge is that this whole auth realm is kind of new to me, so I don't know what everything means! Going to try both of these ideas.

[ilikepi]

Another no-cost option is to sign up for a OneLogin developer account (not affiliated). As far as I can tell, these do not expire; they are just limited with respect to how many users and applications you can connect. They will actively try to upsell you into a paid account of course.