GitHub - outofcontrol/mediawiki-saml: SAML Plugin for Mediawiki

SamlSingleSignOnAuth based on miniOrange, which enables MediaWiki to use SAML 2.0 to SSO with SAML complaint IDP.

Requirements

MediaWiki 1.25+

Add to Mediawiki Localsettings.php

Loads SAML extension

wfLoadExtension( 'SamlSingleSignOnAuth' );

Enter IDP Name

$wgMoSamlIdpName = 'miniOrange';

Set binding type for login. Two possible values - HttpRedirect and HttpPost

$wgMoSamlLoginBindingType = 'HttpRedirect';

Enter certificate information. Open certificate in notepad and copy certificate

$wgMoSamlX509CertDesc = '-----BEGIN CERTIFICATE----- . . . . . . . . . . . . -----END CERTIFICATE-----';

Only set to true if SAML is brokered through miniOrange

$wgMoSamlIsBrokerOn = false;

OPTIONAL - Enter Relay State if applicable

$wgMoSamlRelayState = '';

Set true if Response is signed, set false by default

$wgMoSamlIsResponseSigned = false;

Set true if Assertion is signed, set true by default

$wgMoSamlIsAssertionSigned = true;

Set this to true if you want to update user with incoming attributes whenever user logs in

$wgMoSamlUpdateUser = true;

Auto create user if the user does not exist

$wgMoSamlCreateUser = true;

Map attributes

$wgMoSamlEmailAttr = 'email'; $wgMoSamlUsernameAttr = 'username'; $wgMoSamlFNameAttr = 'fname'; $wgMoSamlLNameAttr = 'lname'; $wgMoSamlGroupAttr = 'role';

Set default group for users

$wgMoSamlDefaultGroup = 'user';

OPTIONAL - Set this to override $wgServer as site URL in the extension. Please make sure this is the URL where MediaWiki is hosted and '/extensions/SamlSingleSignOnAuth/' can be appended to it.

$wgMoSamlServer = 'http://<MEDIAWIKI_DOMAIN>/mediawiki';

Optional - host name - DO NOT CHANGE THIS

$wgMoSamlHostName = 'https://auth.miniorange.com';

Only required for SAML broker flow

$wgMoSamlCustomerKey = 12345;

Set this to true if you don't want your users to view website without being logged in using SAML. Users will be redirected to the IdP if user is not logged in. Make sure logout is enabled for this.

$wgMoSamlRegisteredOnlyAccess = false;

Versions

1.1.1

Fix for HTML not getting loaded on login page

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
i18n		i18n
includes		includes
modules		modules
README.md		README.md
SamlSingleSignOnAuth.class.php		SamlSingleSignOnAuth.class.php
SamlSingleSignOnAuth.hooks.php		SamlSingleSignOnAuth.hooks.php
SamlSingleSignOnAuth.i18n.alias.php		SamlSingleSignOnAuth.i18n.alias.php
SamlSingleSignOnAuth.php		SamlSingleSignOnAuth.php
composer.json		composer.json
extension.json		extension.json
package.json		package.json
version		version

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Requirements

Add to Mediawiki Localsettings.php

Loads SAML extension

Enter IDP Name

Enter SAML Issuer URL or Entity ID

Enter SAML Login URL or ACS(Assertion Consumer Service) URL here

Enter SAML SLO (Single Logout) URL here

Set binding type for login. Two possible values - HttpRedirect and HttpPost

Enter certificate information. Open certificate in notepad and copy certificate

Only set to true if SAML is brokered through miniOrange

OPTIONAL - Enter Relay State if applicable

Set true if Response is signed, set false by default

Set true if Assertion is signed, set true by default

Set this to true if you want to update user with incoming attributes whenever user logs in

Auto create user if the user does not exist

Map attributes

Set default group for users

OPTIONAL - Set this to override $wgServer as site URL in the extension. Please make sure this is the URL where MediaWiki is hosted and '/extensions/SamlSingleSignOnAuth/' can be appended to it.

Optional - host name - DO NOT CHANGE THIS

Only required for SAML broker flow

Set this to true if you don't want your users to view website without being logged in using SAML. Users will be redirected to the IdP if user is not logged in. Make sure logout is enabled for this.

Versions

About

Releases

Packages

Languages

outofcontrol/mediawiki-saml

Folders and files

Latest commit

History

Repository files navigation

Requirements

Add to Mediawiki Localsettings.php

Loads SAML extension

Enter IDP Name

Enter SAML Issuer URL or Entity ID

Enter SAML Login URL or ACS(Assertion Consumer Service) URL here

Enter SAML SLO (Single Logout) URL here

Set binding type for login. Two possible values - HttpRedirect and HttpPost

Enter certificate information. Open certificate in notepad and copy certificate

Only set to true if SAML is brokered through miniOrange

OPTIONAL - Enter Relay State if applicable

Set true if Response is signed, set false by default

Set true if Assertion is signed, set true by default

Set this to true if you want to update user with incoming attributes whenever user logs in

Auto create user if the user does not exist

Map attributes

Set default group for users

OPTIONAL - Set this to override $wgServer as site URL in the extension. Please make sure this is the URL where MediaWiki is hosted and '/extensions/SamlSingleSignOnAuth/' can be appended to it.

Optional - host name - DO NOT CHANGE THIS

Only required for SAML broker flow

Set this to true if you don't want your users to view website without being logged in using SAML. Users will be redirected to the IdP if user is not logged in. Make sure logout is enabled for this.

Versions

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages