SAML Single Sign-On (SSO) For Laravel Using miniOrange As IDP
Laravel SAML Single Sign-On (SSO) plugin gives the ability to enable SAML Single Sign-On for your laravel applications. Using Single Sign-On you can use only one password to access your laravel application and services. Our plugin is compatible with
all the SAML compliant Identity providers. Here we will go through a step-by-step guide to configure Single Sign-On (SSO) between Laravel and miniOrange considering miniOrange as IdP.
Pre-requisites : Download And Installation
Open a Command Prompt window and change the working directory to your Laravel app's main directory.
Enter the below command.
composer require miniorange/saml-laravel-free
Note: If you are using Laravel 5.4 or below, you will need to add the following value to the 'providers' array in your app.php file which can be found in the project\config folder :provider\ssoServiceProvider::class
(You can check your current Laravel version by using the command php artisan --version.)
After successful installation of package, go to your Laravel app in the browser and enter https://<your-host>/mo_admin in the address bar.
The package will start setting up your database for you and then redirect you to the admin registration page.
Register or log in with your account by clicking the Register button to configure the plugin.
After login, you will see the Service Provider Settings option, where you will get the service provider metadata. Keep the metadata handy as it will be required later to configure step 1.
Steps to configure miniOrange Single Sign-On (SSO) Login into Laravel
From the left menu, under the Configure section click on the Apps tab.
In the right upper corner, select Add Application.
Choose the Application type as SAML/WS-FEED.
In the search apps textbox, type Custom SAML App and click on it.
Fill in the metadata details in the textboxes below manually or you can Import SP Metadata.
Custom Application Name
App name you like to provide.
SP Entity ID or Issuer
Enter SP Entity ID / Issuer from Service Provider section of the Laravel Plugin
Enter ACS (Assertion Consumer Service) URL from Service Provider Info section of the Laravel Plugin
Single Logout URL
Enter Single Logout URL from Service Provider Info section of the Laravel Plugin
Click on Next button till login policy section.
Under the Login Policy, select the Default from the Group Name dropdown.
Enter Policy Name you would like to provide.
Select Password from the Login Method dropdown.
Click on Save.
Now, Click on Select-> Metadata option against your app.
By clicking on Show Metadata Details, you will be able to see the metadata, and download the Metadata XML File with the Download Metadata button or you can note down the given information for later configuration.
You have successfully configured miniOrange as SAML IdP (Identity Provider) for achieving miniOrange SSO login into your Laravel Site.
2. Configure Laravel SAML plugin as Service Provider
Go to the miniOrange Laravel SAML 2.0 SSO plugin and click on Choose File button next to the Upload Metadata option.
Upload the metadata file we downloaded from your IDP and click on Upload button.
Click the Test Configuration button to verify that your SAML configuration is correct. Upon successful test configuration, you will receive a table containing the attributes of each user returned by the identity provider.
3. SSO Options
Your users can initiate the Single Sign On flow by clicking on the Single Sign On button generated on your login page. If you do not have this page yet, run php artisan make:auth & php artisan migrate to generate the authentication module.
In this guide, you have successfully configured miniOrange SAML Single Sign-On (miniOrange SSO Login) choosing miniOrange as IdP and Laravel as SP using miniOrange plugin-SAML Single Sign On – SSO Login. This solution ensures that you are ready to roll out secure access to your Laravel site using miniOrange login credentials within minutes.
If you dont hear from us within 24 hours, please feel free to send a follow up email to email@example.com
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.