codeant-ai-for-open-source[bot] commented on PR #38606:
URL: https://github.com/apache/superset/pull/38606#issuecomment-4049635293
## **Sequence Diagram**
This PR enables SAML as a first-class frontend login mode by including SAML
providers in bootstrap auth config and rendering provider buttons in the React
login page. It also ensures the SAML callback can complete by exempting the ACS
endpoint from CSRF checks and skipping recaptcha for federated auth.
```mermaid
sequenceDiagram
participant User
participant LoginPage
participant SupersetBackend
participant IdentityProvider
User->>LoginPage: Open login page
LoginPage->>SupersetBackend: Request bootstrap auth config
SupersetBackend->>SupersetBackend: Build auth config for SAML providers
and no recaptcha
SupersetBackend-->>LoginPage: Return AUTH_TYPE and AUTH_PROVIDERS
LoginPage-->>User: Render SAML provider sign in buttons
User->>LoginPage: Click SAML provider button
LoginPage->>SupersetBackend: Start provider login
SupersetBackend->>IdentityProvider: Redirect for SAML authentication
IdentityProvider->>SupersetBackend: Post SAML response to ACS endpoint
SupersetBackend-->>User: Complete login and return authenticated session
```
---
*Generated by [CodeAnt AI](https://codeant.ai)*
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
