![]() Click on Users > User List > Add User.To add your users in miniOrange there are 2 ways:.You can configure your existing directory/user store or add users in miniOrange. MiniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Okta, Shibboleth, Ping, OneLogin, Ke圜loak), Databases (like MySQL, Maria DB, PostgreSQL) and many more. On the Dashboard, click on Mediawiki application which you have added, to verify SSO configuration.Ĭontact us or email us at and we'll help you setting it up in no time.Ĥ.Login to miniOrange IdP using your credentials.You will be automatically logged in to your Mediawiki account. Enter your miniOrange login credential and click on Login.Go to your Mediawiki URL, here you will be either asked to enter the username or click on the SSO link which will redirect you to miniOrange IdP Sign On Page.Test SSO login to your Mediawiki account with miniOrange IdP: OPTIONAL - This is the URL where MediaWiki is hosted and '/extensions/SamlSingleSignOnAuth/' can be appended to it. This is the MediaWiki default group/role name to which users will be mapped. OPTIONAL - Enter the Attribute Name that contains MediaWiki Last Name.Įnter the Attribute Name that contains MediaWiki Group/Role. OPTIONAL - Enter the Attribute Name that contains MediaWiki First Name. Use NameID if Username is in Subject element. Use NameID if Email is in Subject element.Įnter the Attribute Name that contains MediaWiki Username. If you want to restrict access to only registered users, set this to false.Įnter the Attribute Name that contains MediaWiki Email. Set this to true if you want to auto create users. Set this to true if you want to update user with incoming attributes whenever user logs in Set to true if miniOrange is broker for another IDP. Open the certificate in Notepad and copy/paste the entire content here. Įnter the SAML Login URL or ACS(Assertion Consumer Service) URL of IDP here. miniOrangeĮnter the Issuer/Entity ID of IDP here. Entity ID, Single SignOn Service Url, Certificate Fingerprint) and save it.Įnter the name of the IDP here. # the URL where MediaWiki is hosted and '/extensions/SamlSingleSignOnAuth/' can be appended to it. # OPTIONAL - Set this to override $wgServer as site URL in the extension. # Auto create user if the user does not exist # Set this to true if you want to update user with incoming attributes whenever user logs in # Set true if Assertion is signed, set true by default # Set true if Response is signed, set false by default # OPTIONAL - Enter Relay State if applicable # Only set to true if SAML is brokered through miniOrange $wgMoSamlX509CertDesc = '-BEGIN CERTIFICATE. $wgMoSamlLoginBindingType = 'HttpRedirect' Two possible values - HttpRedirect and HttpPost # Enter SAML Login URL or ACS(Assertion Consumer Service) URL here Require_once "extensions/SamlSingleSignOnAuth/SamlSingleSignOnAuth.php" WfLoadExtension( 'SamlSingleSignOnAuth' ) Add the following code at the bottom of LocalSettings.php (root folder of MediaWiki).In your MediaWiki FTP under extensions directory, extract the extension zip.Download the miniOrange SAML 2.0 SSO extension zip for MediaWiki.Click on the Download Certificate button to download the metadata.xml file which you will require in Step 2.Here you will see 2 options, if you are setting up miniOrange as IDP copy the metadata details related to miniOrange from the 1st section, if you already have an external IDP or User Store (OKTA, AZURE AD, ADFS, ONELOGIN, GOOGLE APPS) you should get the metadata from the 2nd Section as shown below.Click on Show SSO Link to see the IDP initiated SSO link for Mediawiki. Click on Metadata to get metadata details, which will be required later.Search for your app and click on the select in action menu against your app.Get IdP Metadata Details to upload to Mediawiki: To upload respective app logo for a Custom SAML App, click on Upload Logo tab.In the Attribute Mapping tab configure the following attributes as shown in the image below.Enter the SP Entity ID or Issuer : /extensions/SamlSingleSignOnAuth/.Search for Mediawiki in the list, if you don't find Mediawiki in the list then, search for custom and you can set up your application via Custom SAML App.In Choose Application Type click on SAML/WS-FED application type.Go to Apps and click on Add Application button.MiniOrange provides user authentication from various external sources, which can be Directories (like ADFS, Microsoft Active Directory, Azure AD, OpenLDAP, Google, AWS Cognito etc), Identity Providers (like Shibboleth, Ping, Okta, OneLogin, Ke圜loak), Databases (like MySQL, Maria DB, PostgreSQL) and many more.įollow the Step-by-Step Guide given below for Mediawiki Single Sign-On (SSO) 1.
0 Comments
Leave a Reply. |