Using Auth0 with SAML (or equivalent OAuth approaches) and adding a whitelist of addresses

[DeepanshKhurana]

Hello!

I have a personal suite of apps that I want a few people to access. The problem with simple authentication is keeping and managing passwords, which has become a bit cumbersome.

I successfully implemented Auth0 with Google sign-in to my ShinyProxy instance. It works perfectly. Now, anyone with a valid Google login can access all applications.

My question is: Is there a way to have a whitelist of users/email addresses for an authentication method like saml? If yes, how can I get it to work?

Also, I have been unable to make the Logout button in ShinyProxy work for Auth0, but that is a secondary question. I want to log users out when they close the tab. But that is contingent on the actual use-case mentioned above working first.

[LEDfan]

Hi, in ShinyProxy this is currently not possible on a global level, but for each app you can specify who can use it, see https://shinyproxy.io/documentation/configuration/#access-users . In addition, this should be possible directly in Auth0, see e.g. https://auth0.com/blog/ensure-users-log-in-trusted-networks-auth0-actions/

[DeepanshKhurana]

Thank you for the resources. I'll take a look at the suggestions and get back to you. Appreciate the time!