You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
To simplify security auditing of Third Party Tooling by standardising the authentication/authorisation process for new and existing users.
To increase security by using Enterprise Identity Providers for SSO connections, which have a more formal JML process
We have agreed as a team to use a standard architecture for authentication and authorisation (see below). This architecture is currently implemented for GitHub SSO, for example.
✅ Definition of Done
⚠️ The standard SSO architecture may not be possible to implement in all tools. Where this is not possible, we should document centrally the current authentication/authorisation process for the tool - and detail any blockers in enabling the Standard SSO Architecture
🐳 Docker SSO Implements The Standard SSO Architecture
🔑 1Password SSO Implements The Standard SSO Architecture
🏓 Pingdom SSO Implements The Standard SSO Architecture
📟 PagerDuty SSO Implements The Standard SSO Architecture
⛅️ SonarCloud SSO Implements The Standard SSO Architecture
🖥️ Sentry SSO Implements The Standard SSO Architecture
🟢 CircleCI SSO Implements The Standard SSO Architecture
🔐 Auth0 SSO Implements The Standard SSO Architecture
🗺️ OSDataHub SSO Implements The Standard SSO Architecture
📓 Notes
Template Spreadsheet to be used to document whether a tool has implemented the standard SSO architecture and note any deviations and justifications.
Both Enterprise Google Workspace and Enterprise Azure AD connections already exist in our Auth0 Tennant. For each tool, we should only need to create an Application in Auth0, enable both connections and plug the details Application details into the service.
GitHub (ministryofjustice) SSO has already implemented the standard architecture. Github (moj-analytical-services) has not implemented the standard architecture, but we have a separate milestone to complete this work: Single Sign-On for Analytical Services GitHub Organisation
The text was updated successfully, but these errors were encountered:
👀 Purpose
✅ Definition of Done
📓 Notes
The text was updated successfully, but these errors were encountered: