BitBucket SAML Single Sign-On (SSO) Integration with Drupal as IdP

Overview

This guide will help you integrate Drupal as a SAML 2.0 Identity Provider (IdP) and BitBucket as a Service Provider(SP) using the miniOrange SAML IDP module. This integration enables centralized user management and permission control, allowing users to access multiple applications with a single set of credentials. This module is compatible with Drupal 7, Drupal 8, Drupal 9, Drupal 10, and Drupal 11.

Installation Steps

• Using Composer
• Using Drush
• Manual Installation

• Download the module:

  Composer require 'drupal/miniorange_saml_idp'

• Navigate to Extend menu on your Drupal admin console and search for miniOrange SAML Identity Provider using the search box.
• Enable the module by checking the checkbox and click on install button.
• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup

• Install the module:

  drush en miniorange_saml_idp

• Clear the cache:

   drush cr

• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup

• Navigate to Extend menu on your Drupal admin console and click on Install new module button.
• Install the Drupal SAML IDP 2.0 Single Sign On (SSO) - SAML Identity Provider module either by downloading the zip or from the URL of the package (tar/zip).
• Click on Enable newly added modules.
• Enable this module by checking the checkbox and click on install button.
• Configure the module at

  {BaseURL}/admin/config/people/miniorange_saml_idp/idp_setup

Configuration Steps

Drupal SAML IdP Metadata:

• After installing the module on your Drupal site, in the Administration menu, navigate to Configuration → People → miniOrange SAML IDP Configuration. (/admin/config/people/miniorange_saml_idp/idp_setup)

• Navigate to the IDP Metadata tab and download the metadata file. (This is required in order to configure the Bitbucket as a SAML SP)

Configure BitBucket as Service Provider

• Log in to your Bitbucket site as an administrator.
• From the top navigation bar open your profile menu and select Atlassian Marketplace.

• Search for the mO Bitbucket SAML SSO and click the Free trial button to install the application.

• After successful installation, open the configurations of the application from the left navigation panel (Administration → ADD-ONS → miniOrange Single Sign-On)
• Navigate to the SAML tab and select the Configured IDPs option.
• Click on the Add New IDP button

• Select the Quick Setup option.

• Select the Custom IDP.

• On the Service Provider Metadata section, select the By providing a metadata URL/File to the IDP option from the dropdown. Download the metadata (This will require further configuring Drupal as IdP) and click on the Proceed button.

• After proceeding, the section to Configure your Identity Provider appears. Select the option as follows:
  • Would you like to customize the name of your IDP? → Yes
  • Custom IDP Name → Drupal (This can be any relevant name)
  • You need to configure your IDP's metadata on Bitbucket. How would you like to add this metadata? → I have a file which contains the metadata
  • Then upload the metadata file of Drupal downloaded in the earlier steps. Scroll down to the button and click on the Save button.

• Click the Proceed button when the setting has been successfully saved.
• Keep the default settings for the User Profile and User Groups section and click the Save and Proceed button.
• In the Troubleshooting section click on the Finish Quick Setup button to complete the setup.

Configuring Drupal as SAML Identity Provider (IdP):

• Go to the Drupal site. Navigate to the Service Provider Setup tab of the miniOrange SAML IDP module.
• Click on the Upload SP Metadata.

• Upload the metadata file downloaded from the Bitbucket.

• Now click on the Test link to verify your configuration. If your configurations are correct then you will get the homepage of the Bitbucket site in the test configuration window.

You have successfully configured BitBucket as SAML Service Provider and Drupal as SAML Identity Provider.