Guide for Joomla Single Sign On (SSO) using AuthAnvil as Identity Provider (IdP)

AuthAnvil Single Sign On (SSO) for Joomla miniOrange provides a ready to use solution for Joomla. This solution ensures that you are ready to roll out secure access to your Joomla site using AuthAnvil within minutes.

Step 1: Setup AuthAnvil as Identity Provider

    Joomla AuthAnvil sso icon  Prerequisites: Copy these values from the Service Provider Info tab of the SAML plugin.

    • SP Entity ID
    • ACS URL
    Joomla AuthAnvil sso instruction Instructions:

    • Login to Authanvil and Go to SSO Management +(add icon) Create New Application Custom Application.

      Joomla AuthAnvil sso sso management
    • Enter the Application Name

      Joomla AuthAnvil sso  application
    • Go to Protocol Setup and Enter following info:

      Protocol Setup SP-INIT
      Assertion Consumer Service URL ACS URL copied from the plugin
      Allow Multiple Audiences Unchecked
      Audience URI SP Entity ID copied from the plugin
      Service Entity ID SP Entity ID copied from the plugin

      Joomla AuthAnvil sso  protocol setup
    • Enter Advanced Setting

      Include All Audience URIs Checked
      Sign Token Response Checked
      Sign Assertion Unchecked
      Signing Algorithm SHA1

      Joomla AuthAnvil sso advance setting
    • Go to Attribute Transformation Tab and select Specify Custom Attribute Transformation. Add the NameID attribute and click on Add. Then add the name attribute as given in the image.

      Joomla AuthAnvil sso attribute transformation
      Joomla AuthAnvil sso  custom attribute
    • Go to Permission tab and add Groups to which you want to give access to this application.

      Joomla AuthAnvil sso  permission application
    • Click on Add Application and then Save Changes.
    • Open the app. Click on View Federation Metadata in Protocol Setup Tab and save the generated metadata xml file. This metadata file will be required to configure the plugin.

      Joomla AuthAnvil sso  metadata xml

Step 2: Configuring Joomla as Service Provider (SP)

  • In miniOrange SAML plugin, go to Service Provider Setup Tab. There are two ways to configure the plugin with your IDP(AuthAnvil-idp):
  • I. By Uploading AuthAnvil Metadata.xml file(Recommended):

      1. Click on Upload IDP Metadata to upload your IDP(AuthAnvil-idp) metadata.

      Joomla AuthAnvil sso  metadata 2. Choose metadata file and click on Upload.

      Joomla AuthAnvil sso  metadata url

    II. Manual Configuration :

    • In miniOrange SAML plugin, go to Service Provider Setup Tab. Enter the following values:
      IDP Entity ID Identity Provider Issuer from AuthAnvil Setup Instructions
      Single Sign-On Service URL Identity Provider Single Sign-On URL from AuthAnvil-idp Setup Instructions
      X.509 Certificate X.509 Certifiacate from AuthAnvil Setup Instructions

    III. Add a button on your site login page with the following URL:


      Joomla AuthAnvil sso

Step 3: Attribute Mapping (It is Optional to fill this). This is Premium feature.

  • Attributes are user details that are stored in your Identity Provider.
  • Attribute Mapping helps you to get user attributes from your Identity Provider (AuthAnvil-idp) and map them to Joomla user attributes like firstname, lastname etc.
  • While auto registering the users in your Joomla site these attributes will automatically get mapped to your Joomla user details.
  • In miniOrange SAML plugin, go to Attribute Mapping tab and fill in all the fields.
    Username: Name of the username attribute from IdP (Keep NameID by default)
    Email: Name of the email attribute from IdP (Keep NameID by default)
    Group/Role: Name of the Role attribute from your Identity Provider (AuthAnvil-idp)
  • Joomla AuthAnvil sso  mapping
  • You can check the Test Configuration Results under Service Provider Setup tab to get a better idea of which values to map here.

Step 4: Group Mapping (It is Optional to fill this). This is Premium feature.

  • Joomla uses a concept of Roles, designed to give the site owner the ability to control what users can and cannot do within the site.
  • Role mapping helps you to assign specific roles to users of a certain group in your Identity Provider (AuthAnvil-idp).
  • While auto registering, the users are assigned roles based on the group they are mapped to.
  • Joomla AuthAnvil sso  role mapping

Step 5: Redirection & SSO Links.

  • Go to Login Settings tab. There are multiple features availabe in this tab like Auto redirect the user to Identity Provider and Enable Backed Login for Super Users.To use these features, click on the respective checkboxes.
  • Joomla AuthAnvil sso  signin

Free Trial

If you don't find what you are looking for, please contact us at info@xecurify.com or call us at +1 978 658 9387.