Login using Joomla (IDP) into Nextcloud | Nextcloud SAML Single Sign-On
Login using Joomla (IDP) into Nextcloud | Nextcloud SAML Single Sign-On
Single Sign-On in Nextcloud using Joomla IDP allows users to log in to Nextcloud using Joomla by configuring Nextcloud as a Service Provider (SP) and Joomla as a SAML Identity Provider (IDP). This guide will take you through a step-by-step process to configure SSO between the two platforms.
What is Nextcloud?
Nextcloud is an open-source, self-hosted file sync and share server solution. It allows individuals and
organizations to store and synchronize files, collaborate on documents, and manage data securely. Nextcloud provides
features similar to popular cloud storage services but offers greater control over data privacy and security because
it can be hosted on-premises or on a private server.
Pre-requisites: Download And Installation
Install Joomla IDP Plugin
- Download the zip file for the miniOrange Joomla IDP plugin.
- Log into your Joomla site’s administrator console.
- From left toggle menu, click on System, then under Install section click on Extensions.
- Upload the downloaded zip file to install the Joomla IDP plugin.
- Installation of the plugin is successful. Now click on Start Using miniOrange SAML IDP Plugin to configure miniOrange Joomla IDP plugin.
Steps to configure Nextcloud SSO with Joomla as IDP.
1. Configure Nextcloud as Service Provider
- Go to the miniOrange Joomla IDP plugin, navigate to the Identity Provider tab.
- Here, you can find the Identity Provider Metadata XML URL/File or endpoints like IDP Entity ID, SAML Login URL, SAML Logout URL (Premium Feature), and Certificate for SP configuration. Download the XML Metadata by clicking on the button as shown below.
- Open a new browser tab or window, log in to your Nextcloud account as Account Admin.
- Click on the top right corner. Select Apps.
- Search for SSO & SAML Authentication. Click on Download and Enable.
- Click on the top right corner, and select Settings. Find SSO & SAML Authentication on the left menu bar, and open it.
- Click on Use built-in SAML Authentication, click on Add Identity Provider.
- Enter the following information into the Nextcloud as Service Provider setup.You can click here to get information.
- Once this is done, click on Download metadata XML to download the SP metadata XML file.
| Attribute to map the UID to | |
| Identifier of the IDP Entity | Copy the IDP Entity ID / Issuer from IDP Metadata tab in Joomla SAML IDP plugin and paste here. |
| URL Target of the IDP | Copy the SAML Login URL from IDP Metadata tab in Joomla SAML IDP plugin and paste here. |
| Certificate | Download the Certificate from IDP Metadata tab in Joomla SAML IDP plugin. Open it in notepad. Copy and paste the content here. |
2. Configure Joomla as Identity Provider
- Now go to Components miniOrange Joomla IDP Service Provider
- Navigate to the Service Provider tab and complete the fields for Service Provider Name, SP Entity ID or Issuer, ACS URL, and NameID Format. Refer to this step to get Service Provider details. Fill in the other fields according to your requirements. Click on Save.
- Now click on Advance Mapping tab. Select the NameID Attribute and then click on Save Button.
Enter the following values:
| Service Provider Name | Choose appropriate name according to your choice. |
| SP Entity ID or Issuer | Service Provider Entity ID. |
| ACS URL | SP Assertion Consumer Service URL. |
| X.509 Certificate (optional) [For Signed Request] | Paste certificate value you copied from the Metadata file. |
| NameID Format | Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress. |
| Assertion Signed | Checked. |
You have successfully completed your miniOrange SAML 2.0 IDP configurations.
3. Attribute Mapping (Premium Feature)
- In the miniOrange Joomla IDP plugin, navigate to the Attribute Mapping tab.
- Here, you can configure Custom attribute mapping and also add additional User Attributes.
You have successfully configured Single Sign-On with Nextcloud as Service Provider and Joomla as Identity Provider. If you require any further support or, if you are facing any difficulty please mail us on joomlasupport@xecurify.com
Free Trial
If you would like to test out the plugin to ensure your business use case is fulfilled, we do provide a 7-day trial. Please drop us an email at joomlasupport@xecurify.com requesting a trial. You can create an account with us using this link.
Additional Resources.
Need Help? We are right here!
