How Auth works - Seneca-CDOT/telescope GitHub Wiki
SAML2 - is complicated, it is used my Microsoft. We need it to Authenticate through Seneca SSO.
From Seneca we gather inormation Fname, Lname, email..
- we know who you are when you log in firstTake the information, put it into JWT.
We make a claim, we are the issuer.
We also create roles: Seneca role (no info on you), Telescope (we have a record on you in database), admin.
We create JWT using a secret. In Satellite we have middleware - functions like isAuthenticated(), isAuthorized() ... Authentication - SAML stuff If we sign the token the right way - we get into Supabase too.
Sources:
Rough visual