SAML Single Sign-On (SSO) For Laravel Using miniOrange As IDP
Laravel SAML Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On for your laravel applications. Using Single Sign-On you can use only one password to access your laravel application and services. Our plugin is compatible with all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between Laravel and miniOrange considering miniOrange as IdP.
Pre-requisites : Download And Installation
- Open a Command Prompt window and change the working directory to your Laravel app's main directory.
- Enter the below command.
composer require miniorange/saml-laravel-free Note: If you are using Laravel 5.4 or below, you will need to add the following value to the 'providers' array in your app.php file which can be found in the project\config folder :provider\ssoServiceProvider::class (You can check your current Laravel version by using the command php artisan --version.)
- After successful installation of package, go to your Laravel app in the browser and enter https://<your-host>/mo_admin in the address bar.
- The package will start setting up your database for you and then redirect you to the admin registration page.
- Register or log in with your account by clicking the Register button to configure the plugin.
- After login, you will see the Service Provider Settings option, where you will get the service provider metadata. Keep the metadata handy as it will be required later to configure step 1.
Steps to configure miniOrange Single Sign-On (SSO) Login into Laravel
1. Configure miniOrange as Identity Provider
- Go to miniOrange Admin console https://login.xecurify.com/moas/login and login with your miniOrange credentials.
- From the left menu, under the Configure section click on the Apps tab.
- In the right upper corner, select Add Application.
- Choose the Application type as SAML/WS-FEED.
- In the search apps textbox, type Custom SAML App and click on it.
- Fill in the metadata details in the textboxes below manually or you can Import SP Metadata.
- Click on Next button till login policy section.
- Under the Login Policy, select the Default from the Group Name dropdown.
- Enter Policy Name you would like to provide.
- Select Password from the Login Method dropdown.
- Click on Save.
- Now, Click on Select-> Metadata option against your app.
- By clicking on Show Metadata Details, you will be able to see the metadata, and download the Metadata XML File with the Download Metadata button or you can note down the given information for later configuration.
| Custom Application Name | App name you like to provide. |
| SP Entity ID or Issuer | Enter SP Entity ID / Issuer from Service Provider section of the Laravel Plugin |
| ACS URL | Enter ACS (Assertion Consumer Service) URL from Service Provider Info section of the Laravel Plugin |
| Single Logout URL | Enter Single Logout URL from Service Provider Info section of the Laravel Plugin |
You have successfully configured miniOrange as SAML IdP (Identity Provider) for achieving miniOrange SSO login into your Laravel Site.
2. Configure Laravel SAML plugin as Service Provider
- Go to the miniOrange Laravel SAML 2.0 SSO plugin and click on Choose File button next to the Upload Metadata option.
- Upload the metadata file we downloaded from your IDP and click on Upload button.
- Click the Test Configuration button to verify that your SAML configuration is correct. Upon successful test configuration, you will receive a table containing the attributes of each user returned by the identity provider.
3. SSO Options
- Your users can initiate the Single Sign On flow by clicking on the Single Sign On button generated on your login page. If you do not have this page yet, run php artisan make:auth & php artisan migrate to generate the authentication module.
In this guide, you have successfully configured miniOrange SAML Single Sign-On (miniOrange SSO Login) choosing miniOrange as IdP and Laravel as SP using miniOrange plugin-SAML Single Sign On – SSO Login. This solution ensures that you are ready to roll out secure access to your Laravel site using miniOrange login credentials within minutes.
Additional Resources
Need Help? We are right here!
