Question 1

How to set up Samly with a self-signed certificate for development?

Accepted Answer

Use the `phx.gen.cert` mix task from Phoenix or openssl to generate a key and certificate, then specify the file paths in the Samly configuration. The README points to the samly_howto repo for step-by-step instructions.

Question 2

Samly vs Pow: which is better for authentication in Elixir?

Accepted Answer

Samly is specialized for SAML SSO with enterprise IdPs, ideal for corporate integrations, while Pow is a general-purpose authentication framework supporting multiple strategies like email/password. Choose Samly for SAML-specific needs, Pow for broader auth scenarios.

Question 3

Does Samly support OAuth or only SAML?

Accepted Answer

Samly is exclusively for SAML 2.0 Service Provider authentication. For OAuth or OpenID Connect, you would need a different Elixir library, as Samly focuses on enterprise SAML workflows.

Question 4

How to handle multiple Identity Providers with Samly?

Accepted Answer

Configure each IdP with a unique id in the identity_providers list, and use the idp_id_from setting to define routing via path segments or subdomains. The README provides examples for both URL models.

Question 5

What causes 'access_denied {:error, :bad_recipient}' in Samly and how to fix it?

Accepted Answer

This error often stems from mismatched base_url configuration. Ensure the base_url in Samly config matches the service provider's URL expected by the IdP, and verify the IdP metadata file for accuracy.

Question 6

Can Samly be used without the Phoenix framework?

Accepted Answer

Yes, Samly is built on Plug and can integrate with any Plug-based application, not just Phoenix. The router setup involves forwarding routes to Samly.Router, similar to Phoenix but adaptable to other Plug apps.

samly

What is samly?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions