Difference between revisions of "SAML"

From RackTables Wiki
Jump to navigation Jump to search
(Created page with "__TOC__ Please note: this feature is not yet available. = SAML = It's also possible to make RackTables recognize SAML accounts instead of local. This implementation is base...")
 
Line 10: Line 10:
  
 
You first need to alter secret.php and change the setting $user_auth_src to 'saml'.
 
You first need to alter secret.php and change the setting $user_auth_src to 'saml'.
<pre>$user_auth_src = 'ldap';
+
<pre>$user_auth_src = 'saml';
 
</pre>
 
</pre>
  

Revision as of 09:57, 15 April 2013

Please note: this feature is not yet available.

SAML

It's also possible to make RackTables recognize SAML accounts instead of local. This implementation is based on the SimpleSAMLphp API. We assume you have SimpleSAMLphp up and running.

Configuration

You first need to alter secret.php and change the setting $user_auth_src to 'saml'.

$user_auth_src = 'saml';

Further configuration is done through $SAML_options array.

$SAML_options = array
(
	'simplesamlphp_basedir' => '../simplesaml',
	'sp_profile' => 'default-sp',
	'usernameAttribute' => 'eduPersonPrincipName',
	'fullnameAttribute' => 'fullName',
);
option(s) is mandatory? description
simplesamlphp_basedir yes (Relative) path to where SimpleSAMLphp has been installed, seen from the RackTables installation directory. E.g. if you configure '../simplesaml', the application will try to resolve the file '../simplesaml/lib/_autoload.php' from the root of the RackTables installation.
sp_profile yes Define the service profile wich has to be used. A normal SimpleSAMLphp installation defaults to default-sp
usernameAttribute yes Username attribute
fullnameAttribute yes Fullname attribute