Overview

Use this module to implement single sign-on to your Mendix app using the SAML 2.0 protocol. This module manages the end-to-end SSO workflow when working with a SAML IDP. The IDP will relieve your app from logging in your end-users and optionally will also decide which roles the user gets assigned in your app, using mechanism from the SAML protocol.

The module is tested against AzureAD and providing a jump start to implementing providers such as Shibboleth and European eIDAS implementations such as Dutch eHerkenning and DigiD. Given adherence to commonly used parts of the SAML 2.0 specifications the module can be used to integrate your app with with IDaaS (Identity-as-a-Service) providers (e.g. Azure AD, Okta, Auth0, Ping and AWS IAM Identity Center) as well as IAM solutions such as ForgeRock and Keycloak.

Mendix also offers an “OIDC SSO”  module to authenticate your end-users using the OAuth / OpenID Connect protocol. 

Documentation

Please see SAML in the Mendix documentation for details.

Please follow the below version compatibility guidance:

# v.1.18.0 version for Mx7 apps

# v.2.4.8 version for Mx8 apps

# v.3.6.8 version for Mx9 apps using Atlas UI v2, we will no longer provide support for upgraded versions from # v.3.6.10 (e.g. Mx8 apps upgraded to Mx9)

# v.3.6.23 version for Mx 9 and Mx 10 apps using Atlas UI v3 (e.g. for apps newly built on Mx 9 or Mx 10)

# v.4.0.4 version for Mx10.12 apps and higher

# v.4.2.1 version for Mx10.21 apps and higher