Example FastAPI backend that implements SAML2 authentication.
To set up the project, follow these steps:
-
Ensure you have
uvinstalled. You can find the installation instructions on the uv installation page. -
Install the project dependencies using
uv:uv sync
-
Install
xmlsec1on your macOS machine using Homebrew:brew install libxmlsec1
Before running the FastAPI startup command locally, you need to create key.pem and cert.pem
files for local HTTPS setup. Follow the steps below:
-
Open your terminal.
-
Run the following command to generate a private key (
key.pem) and a self-signed certificate (cert.pem):
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365This command will prompt you to enter a passphrase and some information for the certificate. If you
want to avoid entering a passphrase on every restart, you can add -nodes:
openssl req -x509 -nodes -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365-
After running this command,
key.pemandcert.pemfiles will be created in your current directory. -
Now, you can run your FastAPI application with HTTPS locally.
Please ensure these files are kept secure, and remember to include key.pem and cert.pem in your
.gitignore file to prevent them from being committed to your repository.
To set up your environment variables, copy the contents of the .env.example file to a new file
named .env. You can do this using the following command:
cp .env.example .envThen, update the values in the .env file as needed for your setup.
To start the service locally you should execute the command:
uv run uvicorn src.main:app --ssl-keyfile=key.pem --ssl-certfile=cert.pem --host=0.0.0.0 --port=8000 --reloadYou could also use the local_starter.sh file:
source local_starter.sh