profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/ariarijp/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

ariarijp/crontoc 16

Show crontab lines with next execution time.

ariarijp/elasticsearch-and-kibana-playbook 7

Ansibleを使用してElasticsearchとKibana4をUbuntu 14.04に対してプロビジョニングするためのPlaybook

ariarijp/5min-pentaho-biserver 4

Pentaho BIをVagrantで起動するためのVagrantfileです、

ariarijp/5min-kibana 1

5分でElasticsearch,Fluentd,Kibanaのお試し環境を構築するためのVagrantfile

ariarijp/ansible-django-playground 1

Django1.7をお手軽に立ち上げるVagrantfileなど一式

ariarijp/cassowary 1

Simple rate-limit firewall.

ariarijp/embulk-input-redash 1

Redash input plugin for Embulk

release Connehito/cake-sentry

4.0.0-rc1

released time in 3 hours

startedshimataro/ssh-key-action

started time in a day

startedgoogle/zx

started time in a day

fork toyama0919/tensorflow

An Open Source Machine Learning Framework for Everyone

https://tensorflow.org

fork in 3 days

startedYoshikiShibata/gpl

started time in 4 days

PR opened getredash/website

[Security] Bump hosted-git-info from 2.7.1 to 2.8.9

Bumps hosted-git-info from 2.7.1 to 2.8.9. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-43f8-2h32-f4cj">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Regular Expression Denial of Service in hosted-git-info</strong> The npm package <code>hosted-git-info</code> before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity</p> <p>Affected versions: < 2.8.9</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md">hosted-git-info's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.8...v2.8.9">2.8.9</a> (2021-04-07)</h2> <h3>Bug Fixes</h3> <ul> <li>backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a> (<a href="https://github.com/npm/hosted-git-info/commit/29adfe5">29adfe5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/84">#84</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.7...v2.8.8">2.8.8</a> (2020-02-29)</h2> <h3>Bug Fixes</h3> <ul> <li><a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed node 6 support (<a href="https://github.com/npm/hosted-git-info/commit/5038b18">5038b18</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/66">#66</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.6...v2.8.7">2.8.7</a> (2020-02-26)</h2> <h3>Bug Fixes</h3> <ul> <li>Do not attempt to use url.URL when unavailable (<a href="https://github.com/npm/hosted-git-info/commit/2d0bb66">2d0bb66</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/62">#62</a></li> <li>Do not pass scp-style URLs to the WhatWG url.URL (<a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf">f2cdfcf</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/60">#60</a></li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.5...v2.8.6">2.8.6</a> (2020-02-25)</h2> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.4...v2.8.5">2.8.5</a> (2019-10-07)</h2> <h3>Bug Fixes</h3> <ul> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/e8325b5">e8325b5</a>), closes <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/51">#51</a></li> <li>updated pathmatch for gitlab (<a href="https://github.com/npm/hosted-git-info/commit/ffe056f">ffe056f</a>)</li> </ul> <p><!-- raw HTML omitted --><!-- raw HTML omitted --></p> <h2><a href="https://github.com/npm/hosted-git-info/compare/v2.8.3...v2.8.4">2.8.4</a> (2019-08-12)</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/npm/hosted-git-info/commit/8d4b3697d79bcd89cdb36d1db165e3696c783a01"><code>8d4b369</code></a> chore(release): 2.8.9</li> <li><a href="https://github.com/npm/hosted-git-info/commit/29adfe5ef789784c861b2cdeb15051ec2ba651a7"><code>29adfe5</code></a> fix: backport regex fix from <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/76">#76</a></li> <li><a href="https://github.com/npm/hosted-git-info/commit/afeaefdd86ba9bb5044be3c1554a666d007cf19a"><code>afeaefd</code></a> chore(release): 2.8.8</li> <li><a href="https://github.com/npm/hosted-git-info/commit/5038b1891a61ca3cd7453acbf85d7011fe0086bb"><code>5038b18</code></a> fix: <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/61">#61</a> & <a href="https://github-redirect.dependabot.com/npm/hosted-git-info/issues/65">#65</a> addressing issues w/ url.URL implmentation which regressed nod...</li> <li><a href="https://github.com/npm/hosted-git-info/commit/7440afa859162051c191e55d8ecfaf69a193b026"><code>7440afa</code></a> chore(release): 2.8.7</li> <li><a href="https://github.com/npm/hosted-git-info/commit/2d0bb6615ecb8f9ef1019bc0737aab7f6449641f"><code>2d0bb66</code></a> fix: Do not attempt to use url.URL when unavailable</li> <li><a href="https://github.com/npm/hosted-git-info/commit/f2cdfcf33ad2bd3bd1acdba0326281089f53c5b1"><code>f2cdfcf</code></a> fix: Do not pass scp-style URLs to the WhatWG url.URL</li> <li><a href="https://github.com/npm/hosted-git-info/commit/e1b83df5d9cb1f8bb220352e20565560548d2292"><code>e1b83df</code></a> chore(release): 2.8.6</li> <li><a href="https://github.com/npm/hosted-git-info/commit/ff259a6117c62df488e927820e30bec2f7ee453f"><code>ff259a6</code></a> Ensure passwords in hosted Git URLs are correctly escaped</li> <li><a href="https://github.com/npm/hosted-git-info/commit/624fd6f301dd5a1fd7ad1b333d6f8921a12ff98c"><code>624fd6f</code></a> chore(release): 2.8.5</li> <li>Additional commits viewable in <a href="https://github.com/npm/hosted-git-info/compare/v2.7.1...v2.8.9">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~nlf">nlf</a>, a new releaser for hosted-git-info since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -3

0 comment

1 changed file

pr created time in 5 days

startedopen-mmlab/mmcv

started time in 5 days

startedgoogle/zx

started time in 5 days

startedobservablehq/plot

started time in 5 days

startedClearURLs/Addon

started time in 5 days

startedfacebookincubator/cinder

started time in 5 days

startedxacrimon/dashmap

started time in 5 days

startedleandromoreira/digital_video_introduction

started time in 5 days

PR opened getredash/website

[Security] Bump url-parse from 1.4.4 to 1.5.1

Bumps url-parse from 1.4.4 to 1.5.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-9m6j-fcg5-2442">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Path reaversal in url-parse</strong> url-parse before 1.5.0 mishandles certain uses of backslash such as http:/ and interprets the URI as a relative path.</p> <p>Affected versions: < 1.5.0</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/unshiftio/url-parse/commit/eb6d9f51e395b7e47bf2594e457d541db21c713b"><code>eb6d9f5</code></a> [dist] 1.5.1</li> <li><a href="https://github.com/unshiftio/url-parse/commit/750d8e8a9d45dbce9ff09759f0fe4564cdd47d74"><code>750d8e8</code></a> [fix] Fixes relative path resolving <a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/199">#199</a> <a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/200">#200</a> (<a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/201">#201</a>)</li> <li><a href="https://github.com/unshiftio/url-parse/commit/3ac777474ba5dc48a7e33771cbb311fc6f69bef8"><code>3ac7774</code></a> [test] Make test consistent for browser testing</li> <li><a href="https://github.com/unshiftio/url-parse/commit/267a0c6f7ef1a58271be61611c5103daace602c9"><code>267a0c6</code></a> [dist] 1.5.0</li> <li><a href="https://github.com/unshiftio/url-parse/commit/d1e7e8822f26e8a49794b757123b51386325b2b0"><code>d1e7e88</code></a> [security] More backslash fixes (<a href="https://github-redirect.dependabot.com/unshiftio/url-parse/issues/197">#197</a>)</li> <li><a href="https://github.com/unshiftio/url-parse/commit/d99bf4cf259b7378c855f786edc253e70405ffdc"><code>d99bf4c</code></a> [ignore] Remove npm-debug.log from .gitignore</li> <li><a href="https://github.com/unshiftio/url-parse/commit/422c8b5e4cac6a79cd35b4e86731476dcbeec7e4"><code>422c8b5</code></a> [pkg] Replace nyc with c8</li> <li><a href="https://github.com/unshiftio/url-parse/commit/933809d630c7b21399b4e5df59fccccd80033b21"><code>933809d</code></a> [pkg] Move coveralls to dev dependencies</li> <li><a href="https://github.com/unshiftio/url-parse/commit/190b2168035899a2a88f2dc2625963bf7e2f338f"><code>190b216</code></a> [pkg] Add .npmrc</li> <li><a href="https://github.com/unshiftio/url-parse/commit/ce3783f4ea25753cfa36376769c14e4e2fe6ea80"><code>ce3783f</code></a> [test] Do not test on all available versions of Edge and Safari</li> <li>Additional commits viewable in <a href="https://github.com/unshiftio/url-parse/compare/1.4.4...1.5.1">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+8 -8

0 comment

1 changed file

pr created time in 6 days

create barnchgetredash/website

branch : dependabot/npm_and_yarn/url-parse-1.5.1

created branch time in 6 days

create barnchgetredash/website

branch : dependabot/npm_and_yarn/underscore-1.13.1

created branch time in 6 days

PR opened getredash/website

[Security] Bump underscore from 1.9.1 to 1.13.1

Bumps underscore from 1.9.1 to 1.13.1. This update includes a security fix. <details> <summary>Vulnerabilities fixed</summary> <p><em>Sourced from <a href="https://github.com/advisories/GHSA-cf4h-3jhx-xvhq">The GitHub Security Advisory Database</a>.</em></p> <blockquote> <p><strong>Arbitrary Code Execution in underscore</strong> The package <code>underscore</code> from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Execution via the template function, particularly when a variable property is passed as an argument as it is not sanitized.</p> <p>Affected versions: >= 1.3.2 < 1.12.1</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jashkenas/underscore/commit/943977e34e2279503528a71ddcc2dd5f96483945"><code>943977e</code></a> Merge branch 'umd-alias', tag 1.13.1 release</li> <li><a href="https://github.com/jashkenas/underscore/commit/5630f882932552ba23f34b57f91c0c6e2a38ad82"><code>5630f88</code></a> Add version 1.13.1 to the change log</li> <li><a href="https://github.com/jashkenas/underscore/commit/5aa5b526a94edf487ab1d4a4e3cde8f7749e6d2c"><code>5aa5b52</code></a> Update the bundle sizes</li> <li><a href="https://github.com/jashkenas/underscore/commit/76c8d8a05db2d0f9ecfb193ba2ab7780c4a26441"><code>76c8d8a</code></a> Bump the version to 1.13.1</li> <li><a href="https://github.com/jashkenas/underscore/commit/9cda0b09742c9ed6ae5e1bccb709b63f32a04f45"><code>9cda0b0</code></a> Add some build clarifications to the documentation (<a href="https://github-redirect.dependabot.com/jashkenas/underscore/issues/2923">#2923</a>)</li> <li><a href="https://github.com/jashkenas/underscore/commit/8b5928c04b9a61a99e2704740b80287247e9f47a"><code>8b5928c</code></a> Revert .gitignore underscore.js from 57a4a0e (fix <a href="https://github-redirect.dependabot.com/jashkenas/underscore/issues/2923">#2923</a>)</li> <li><a href="https://github.com/jashkenas/underscore/commit/7054a54d63af2ed1c99eb3707836da709b5e625e"><code>7054a54</code></a> Update generated sources and tag 1.13.0 release</li> <li><a href="https://github.com/jashkenas/underscore/commit/37dc52a61054674115be560ab9cbdd26b05031ed"><code>37dc52a</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/jashkenas/underscore/issues/2921">#2921</a> from jgonggrijp/prepare-1.13.0</li> <li><a href="https://github.com/jashkenas/underscore/commit/5511d129881253807d728cc6a21fff55953ae4f9"><code>5511d12</code></a> Add version 1.13.0 to the change log</li> <li><a href="https://github.com/jashkenas/underscore/commit/efe5fbf4a1d43c9a88c1646aa5ab53a4745655b8"><code>efe5fbf</code></a> Bump the version to 1.13.0</li> <li>Additional commits viewable in <a href="https://github.com/jashkenas/underscore/compare/1.9.1...1.13.1">compare view</a></li> </ul> </details> <details> <summary>Maintainer changes</summary> <p>This version was pushed to npm by <a href="https://www.npmjs.com/~jgonggrijp">jgonggrijp</a>, a new releaser for underscore since your current version.</p> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+3 -2

0 comment

1 changed file

pr created time in 6 days

startedcolinhacks/zod

started time in 6 days

fork abetomo/aws-sam-cli

CLI tool to build, test, debug, and deploy Serverless applications using AWS SAM

https://aws.amazon.com/serverless/sam/

fork in 7 days

pull request commentgetredash/website

add instruction for self-hosted SAML Authentication Options

@susodapop awesome, thank you! :)

iamtodor

comment created time in 8 days

push eventgetredash/website

iamtodor

commit sha 5899800ebebb05f4089b465adf842166caf87865

Add instruction for self-hosted SAML Authentication Options (#567)

view details

push time in 8 days

PR merged getredash/website

add instruction for self-hosted SAML Authentication Options

Hello, This PR brings huge documentation improvement and clarification for SSO SAML Authentication. PR has been established based on the opened issue https://github.com/getredash/redash/issues/2977 Kudos to @rockxsj

+73 -34

1 comment

1 changed file

iamtodor

pr closed time in 8 days

pull request commentgetredash/website

add instruction for self-hosted SAML Authentication Options

@susodapop Thank you for the changes! I committed them

iamtodor

comment created time in 8 days

Pull request review commentgetredash/website

add instruction for self-hosted SAML Authentication Options

 Authentication settings are available in the `Settings`>`Settings` tab.  ![](/assets/images/docs/gitbook/authentication-options.png) -{% callout %}-Only admins can view and change authentication settings.+{% callout %} Only admins can view and change authentication settings. {% endcallout %}  There are 3 authentication related settings here:  1. Enable/disable password based login.-2. Google SSO: add Google Apps based domains to allow login from. Any user with a Google account from these domain(s) will be able to login. If they don't have an account yet, an account will be automatically created.+2. Google SSO: add Google Apps based domains to allow login from. Any user with+   a Google account from these domain(s) will be able to login. If they don't+   have an account yet, an account will be automatically created. 3. Enable/disable SAML support. -{% callout warning %}-Please note that SAML authentication is no longer available for Hosted Redash customers. Existing configurations are not affected.+{% callout warning %} Please note that SAML authentication is no longer+available for Hosted Redash customers. Existing configurations are not affected. {% endcallout %}  Once you enable SAML, additional settings will appear:  ![](/assets/images/docs/gitbook/saml-details.png) -1. SAML Metadata URL is required to make SAML authentication work. You can get this URL from your SAML provider like [OneLogin](https://www.onelogin.com/connector/redash).-2. Set up Redash callback URL in your SAML provider: `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you have single organization name, set `default` as value for org_slug.-3. Within SAML provider, map user fields FirstName and LastName to matching values as those two fields are mandatory for user creation.--By default any user created with SAML/SSO will join the default group. It's possible to configure the SAML provider to pass what groups the user should join by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash application, it will always pass this parameter, meaning that even for existing users, it will override their current groups memberships. Hence you need to make sure it's up to date.+1. SAML Metadata URL is required to make SAML authentication work. You can get+   this URL from your SAML provider like+   [OneLogin](https://www.onelogin.com/connector/redash).+2. Set up Redash callback URL in your SAML provider:+   `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you+   have single organization name, set `default` as value for org_slug.+3. Within SAML provider, map user fields FirstName and LastName to matching+   values as those two fields are mandatory for user creation.++By default any user created with SAML/SSO will join the default group. It's+possible to configure the SAML provider to pass what groups the user should join+by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash+application, it will always pass this parameter, meaning that even for existing+users, it will override their current groups memberships. Hence you need to make+sure it's up to date.++### How to Configure self-hosted SAML++1. SAML Metadata URL has to look as following:+   `http://your-site.com/auth/realms/somerelm/protocol/saml/descriptor`

This isn't strictly true. The metadata URL should point at an XML file. Perhaps update to the following?

1. SAML Metadata URL should point to an XML file on your server, such as:
   `http://your-site.com/auth/realms/somerelm/protocol/saml/descriptor`
iamtodor

comment created time in 9 days

Pull request review commentgetredash/website

add instruction for self-hosted SAML Authentication Options

 Authentication settings are available in the `Settings`>`Settings` tab.  ![](/assets/images/docs/gitbook/authentication-options.png) -{% callout %}-Only admins can view and change authentication settings.+{% callout %} Only admins can view and change authentication settings. {% endcallout %}  There are 3 authentication related settings here:  1. Enable/disable password based login.-2. Google SSO: add Google Apps based domains to allow login from. Any user with a Google account from these domain(s) will be able to login. If they don't have an account yet, an account will be automatically created.+2. Google SSO: add Google Apps based domains to allow login from. Any user with+   a Google account from these domain(s) will be able to login. If they don't+   have an account yet, an account will be automatically created. 3. Enable/disable SAML support. -{% callout warning %}-Please note that SAML authentication is no longer available for Hosted Redash customers. Existing configurations are not affected.+{% callout warning %} Please note that SAML authentication is no longer+available for Hosted Redash customers. Existing configurations are not affected. {% endcallout %}  Once you enable SAML, additional settings will appear:  ![](/assets/images/docs/gitbook/saml-details.png) -1. SAML Metadata URL is required to make SAML authentication work. You can get this URL from your SAML provider like [OneLogin](https://www.onelogin.com/connector/redash).-2. Set up Redash callback URL in your SAML provider: `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you have single organization name, set `default` as value for org_slug.-3. Within SAML provider, map user fields FirstName and LastName to matching values as those two fields are mandatory for user creation.--By default any user created with SAML/SSO will join the default group. It's possible to configure the SAML provider to pass what groups the user should join by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash application, it will always pass this parameter, meaning that even for existing users, it will override their current groups memberships. Hence you need to make sure it's up to date.+1. SAML Metadata URL is required to make SAML authentication work. You can get+   this URL from your SAML provider like+   [OneLogin](https://www.onelogin.com/connector/redash).+2. Set up Redash callback URL in your SAML provider:+   `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you+   have single organization name, set `default` as value for org_slug.+3. Within SAML provider, map user fields FirstName and LastName to matching+   values as those two fields are mandatory for user creation.++By default any user created with SAML/SSO will join the default group. It's+possible to configure the SAML provider to pass what groups the user should join+by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash+application, it will always pass this parameter, meaning that even for existing+users, it will override their current groups memberships. Hence you need to make+sure it's up to date.++### How to Configure self-hosted SAML++1. SAML Metadata URL has to look as following:+   `http://your-site.com/auth/realms/somerelm/protocol/saml/descriptor`+2. SAML Entity ID has to be: `redash`+3. SAML NameID Format has to be:
3. SAML NameID Format should be:
iamtodor

comment created time in 9 days

Pull request review commentgetredash/website

add instruction for self-hosted SAML Authentication Options

 Authentication settings are available in the `Settings`>`Settings` tab.  ![](/assets/images/docs/gitbook/authentication-options.png) -{% callout %}-Only admins can view and change authentication settings.+{% callout %} Only admins can view and change authentication settings. {% endcallout %}  There are 3 authentication related settings here:  1. Enable/disable password based login.-2. Google SSO: add Google Apps based domains to allow login from. Any user with a Google account from these domain(s) will be able to login. If they don't have an account yet, an account will be automatically created.+2. Google SSO: add Google Apps based domains to allow login from. Any user with+   a Google account from these domain(s) will be able to login. If they don't+   have an account yet, an account will be automatically created. 3. Enable/disable SAML support. -{% callout warning %}-Please note that SAML authentication is no longer available for Hosted Redash customers. Existing configurations are not affected.+{% callout warning %} Please note that SAML authentication is no longer+available for Hosted Redash customers. Existing configurations are not affected. {% endcallout %}  Once you enable SAML, additional settings will appear:  ![](/assets/images/docs/gitbook/saml-details.png) -1. SAML Metadata URL is required to make SAML authentication work. You can get this URL from your SAML provider like [OneLogin](https://www.onelogin.com/connector/redash).-2. Set up Redash callback URL in your SAML provider: `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you have single organization name, set `default` as value for org_slug.-3. Within SAML provider, map user fields FirstName and LastName to matching values as those two fields are mandatory for user creation.--By default any user created with SAML/SSO will join the default group. It's possible to configure the SAML provider to pass what groups the user should join by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash application, it will always pass this parameter, meaning that even for existing users, it will override their current groups memberships. Hence you need to make sure it's up to date.+1. SAML Metadata URL is required to make SAML authentication work. You can get+   this URL from your SAML provider like+   [OneLogin](https://www.onelogin.com/connector/redash).+2. Set up Redash callback URL in your SAML provider:+   `https://app.redash.io/saml/callback?org_slug=<organization name>`. If you+   have single organization name, set `default` as value for org_slug.+3. Within SAML provider, map user fields FirstName and LastName to matching+   values as those two fields are mandatory for user creation.++By default any user created with SAML/SSO will join the default group. It's+possible to configure the SAML provider to pass what groups the user should join+by setting the `RedashGroups` parameter. If you use OneLogin's predefined Redash+application, it will always pass this parameter, meaning that even for existing+users, it will override their current groups memberships. Hence you need to make+sure it's up to date.++### How to Configure self-hosted SAML++1. SAML Metadata URL has to look as following:+   `http://your-site.com/auth/realms/somerelm/protocol/saml/descriptor`+2. SAML Entity ID has to be: `redash`
2. SAML Entity ID should be: `redash`
iamtodor

comment created time in 9 days

startedgfxfundamentals/threejsfundamentals

started time in 11 days