2017 © Pedro Peláez
 

neos-package simplesamlserviceprovider

Neos Flow package containing a SAML service provider based on SimpleSAMLphp.

image

swisscom/simplesamlserviceprovider

Neos Flow package containing a SAML service provider based on SimpleSAMLphp.

  • Tuesday, May 22, 2018
  • by sinso
  • Repository
  • 5 Watchers
  • 1 Stars
  • 166 Installations
  • PHP
  • 0 Dependents
  • 0 Suggesters
  • 0 Forks
  • 0 Open issues
  • 1 Versions
  • 60 % Grown

The README.md

Swisscom.SimpleSamlServiceProvider

Neos Flow SAML authentication package containing a SAML service provider based on SimpleSAMLphp., (*1)

Installation

Cf: https://simplesamlphp.org/docs/2.4/simplesamlphp-install.html, (*2)

Install this package via composer. It will add simplesamlphp/simplesamlphp as dependency., (*3)

Think as the simplesamlphp installation as an application inside your Flow application. Therefore, have a look at Installing SimpleSAMLphp in alternative locations, (*4)

Apache

  1. Create symlink Web/simplesamlphp -> ../Packages/Libraries/simplesamlphp/simplesamlphp/public
  2. Patch the Apache .htaccess configuration to not rewrite simplesamlphp and set the SIMPLESAMLPHP_CONFIG_DIR environment var. There is apatch for you: htaccess.patch

Nginx

For Nginx you we don't need a symlink., (*5)

  1. Use the configuration from here: Configuring Nginx
  2. Adapt the alias to the absolut path of your installation.

As a starting point for the coinfiguration, copy the example structure to the SIMPLESAMLPHP_CONFIG_DIR under Configuration/SimpleSamlPhp/, (*6)

Sample setup

As a sample and for test purposes, the serverless SAML identity provider Samling can be configured most basically as follows:, (*7)

mkdir Configuration/SimpleSamlPhp/metadata
cp Packages/Libraries/simplesamlphp/simplesamlphp/metadata/saml20-idp-remote.php.dist Configuration/SimpleSamlPhp/metadata/saml20-idp-remote.php

Add the following metadata config to Configuration/SimpleSamlPhp/metadata/saml20-idp-remote.php:, (*8)

$metadata['https://fujifish.github.io/samling/samling.html'] = array(
    /* Configuration options for the first IdP. */
    'SingleSignOnService' => [
        [
            'Location' => 'https://fujifish.github.io/samling/samling.html',
            'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect',
        ],
    ],
    'certificate' => 'samling.pub'
);

The certificate is copied from https://fujifish.github.io/samling/samling.html to the cert folder (see certdir in config.php)., (*9)

Integration

Have a look into the package's Configuration/Settings.yaml and configure the entry points if needed., (*10)

The following setting has to match the authentication source configured in the SimpleSAMLphp authsources.php config file:, (*11)

Swisscom:
  SimpleSamlServiceProvider:
    authSource: 'default-sp'

The Versions

22/05 2018

dev-master

9999999-dev

Neos Flow package containing a SAML service provider based on SimpleSAMLphp.

  Sources   Download

The Requires

 

authentication saml simplesamlphp flow neos