Step 1: Setup Jboss Keyclock as Identity Provider
Step 2: Configuring Drupal as Service Provider (SP)
Step 3: Attribute Mapping. (It is Optional to fill this). This is a Premium feature.
- Attributes are user details that are stored in your Identity Provider.
- Attribute Mapping helps you to get user attributes from your Identity Provider (IdP) and map them to Drupal 8 user attributes like firstname, lastname etc.
- While auto registering the users in your Drupal site these attributes will automatically get mapped to your Drupal 8 user details.
- In miniOrange SAML Module, go to Mapping tab and fill in all the fields.
||Name of the username attribute from IdP (Keep NameID by default)
||Name of the email attribute from IdP (Keep NameID by default)
||Name of the Role attribute from Identity Provider (IdP)
- You can check the Test Configuration Results under Service Provider Setup tab to get a better idea of which values to map here.
Step 4: Role Mapping (It is Optional to fill this). This is Premium feature.
- Drupal 8 uses a concept of Roles, designed to give the site owner the ability to control what users can and cannot do within the site.
- Role mapping helps you to assign specific roles to users of a certain group in your Identity Provider (IdP).
- While auto registering, the users are assigned roles based on the group they are mapped to.
Step 5: Sign In Setting. This is Premium feature.
- Go to SIGN IN Settings Tab. There are multiple features available in this tab like Protect your whole site, Auto redirect the user to Identity Provider and Backdoor Login. To use these features, click on the respective checkboxes.
If you are looking for anything which you cannot find, please drop us an email on firstname.lastname@example.org