Moodle SAML Single Sign-On (SSO) Integration with Drupal as IdP

Drupal can be set as a centralized identity provider or an authentication source for the users across other applications via Single Sign-On (SSO). This document will walk you through the steps of integrating Drupal as SAML 2.0 IdP and Moodle as a Service Provider (SP) using the miniOrange SAML IDP module. This will allow you to manage users and their permissions in a place and at the same time the users can access multiple applications with single credentials. The module is compatible with Drupal 7, Drupal 8, Drupal 9, and Drupal 10.

Prerequisite:

• Download the plugin from the Moodle Plugin Directory and install it in the Moodle referring to the steps below:
  • Login as administrator in Moodle.
  • Navigate to the Site Administrator → Plugins → Install plugins. In Plugin installer → beside the ZIP package → click on Choose a file.
    • A File Picker window will appear on the left side. Select Upload a file and then click on the Choose File button. (upload the zip file that you downloaded from the Moodle Plugins Directory)
    • Click on the Upload this File button.
  • Click the Install the plugin from the ZIP file button and then click on the Continue button to proceed.
  • Click on the Upgrade Moodle database now button, and then click on the Continue button.

Drupal SAML IdP Metadata:

• After installing the module on your Drupal site, in the Administration menu → navigate to Configuration → People → miniOrange SAML IDP Configuration. (/admin/config/people/miniorange_saml_idp/idp_setup)

• Under the IDP Metadata tab, click on the Download Metadata button. Open it on the notepad and copy the IdP information. Keep it handy. (This information is required to configure Moodle as SAML SP.)

Configure SAML SSO Application in Moodle LMS (E-learning):

• Log in to your Moodle administrator account.
• Navigate to the Site administrator → Plugins → Plugins overview → Additional plugins.
• Click on the Settings link under Actions.

• Under the Service Provider Metadata tab click on the DOWNLOAD link to download the XML metadata file. Keep it handy. This is required to configure Drupal as a SAML Identity Provider (IdP).

• Go to the Service Provider Setup tab of the plugin and click on the Upload IdP Metadata button.

• Enter the Identity Provider Name. Paste the previously copied IdP metadata file from Drupal into the IdP Metadata XML text field and click on the Upload Metadata button.

Configuring Drupal as SAML Identity Provider (IdP):

• Navigate to the Drupal site. Go to the Service Provider Setup tab of the module and click on the Upload SP Metadata.
• In the Upload Metadata field, choose the SP metadata file that you downloaded from Moodle and click on the Upload button.

You have successfully configured the SAML SSO between Nextcloud as SAML SP and Drupal as SAML IDP.

Test Connection between Moodle and Drupal:

• Navigate to your Moodle site.
• In the Moodle dashboard → Site administration → Plugins → Plugins Overview → Additional plugins → Settings.
• Go to the plugin's Service Provider Setup tab. Scroll down and click on the Test Configuration button.

• On a Test Configuration popup, sign in with Drupal site credentials (if the user session does not exist). After successful authentication, the list of attributes received from the Drupal site will be displayed.
• Click on the Done button.