Introducing Single Sign-on for Hasura Console

Single Sign-on (SSO) has been introduced for Hasura Console to enhance security and provide flexibility in accessing the tool. This feature is available on Hasura Enterprise Edition and already exists for Hasura Cloud customers via SAML. The integration of existing SSO identity providers with Hasura GraphQL Engine enables authentication, while full support for OAuth 2.0 as a Single Sign-On (SSO) solution is provided without the need for additional tooling or services. Configuration involves setting up the sso-providers argument or HASURA_GRAPHQL_SSO_PROVIDERS environment variable with details such as client ID, display name, scope, authorization URL, request token URL, admin roles, and JWT secret. For other protocols like LDAP or SAML, an OpenID Connect compliant middleware service can be used. Hasura Cloud Enterprise supports SSO integration through the SAML 2.0 protocol.