SAML Single Sign-On into RocketChat using Joomla IDP Plugin | RocketChat SSO

RocketChat

Login using Joomla Users ( Joomla as SAML IDP ) plugin gives you the ability to use your Joomla credentials to log into RocketChat. Here we will go through a step-by-step guide to configure SSO between RocketChat as Service Provider and Joomla as an Identity Provider.

Note: Premium Version is required to set up SSO to RocketChat.

Step 1: Configure RocketChat as Service Provider

Open a new browser tab or window, Log in to your RocketChat account as Account Admin.
Click on the left corner. Select Administration.

Search for SAML under Administration tab.

Enter the information into the corresponding fields.

Custom Provider	<name-of-your-app>
Custom Entry Point	Enter SAML Login URL from the Identity Provider tab of the Joomla plugin.
IDP SLO Redirect URL	Enter SAML logout URL from the Identity Provider tab of the Joomla plugin.
Custom Issuer	https://<your-rocketchat-url>/_saml/metadata/<name-of-your-app>
Public Cert Contents	(a) Open the Public Cert Contents dropdown (b) Download the Certificate from IDP Metadata. Open it in notepad. Copy and paste the content here.
Signature Validation Type	Validate Either Signature
User Data Field Map	Open the User Data Field Map dropdown and enter the following attributes: {"username":"username", "email":"email", "name": "cn"}

Note: Custom Provider = <name of your app> e.g. my-app

Once this is done, click on Enable and Save Changes

Joomla 4 Configuration
Joomla 3 Configuration

Download SAML 2.0 IdP for Joomla from Here.

From the dashboard of Joomla 4 site. Click on System to install the plugin

Under System Install Extentions .

Drag and drop your miniorange-joomla-saml-idp.zip file in the area indicated in the image below or browse and select the file to install the plugin.

Now go to Components miniOrange Joomla IDP Service Provider

Under Service Provider tab and fill in the Service Provider Name, SP Entity ID or Issuer, ACS URL and NameID Format. You will get these details from the Service Provider that you are using. Fill in the other fields according to your requirements. Click on Save.

Service Provider Name	Choose appropriate name according to your choice .
SP Entity ID or Issuer	Service Provider Entity ID .
ACS URL	SP Assertion Consumer Service URL .
X.509 Certificate (optional) [For Signed Request]	Paste certificate value you copied from the Metadata file .
NameID Format	Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress.
Assertion Signed	Checked.

Click on NameID Attribute tab. Select the NameID Attribute and then click on Save Button.

Miniorange Joomla SAML Single Sign-On (SSO) supports multiple known SPs like Panopto, Lucid charts, Agylia LMS, Moodle, Inkling SP, Zendesk, Tableau, Owncloud, miniOrange Wordpress SAML SP, Drupal SAML SP, Workplace by Facebook, Salesforce, Zoho, Klipfolio and many more.

You have successfully completed your miniOrange SAML 2.0 IDP configurations. Still, if you are facing any difficulty please mail us on joomlasupport@xecurify.com .

Download SAML 2.0 IdP for Joomla from Here.
Login to the administrator section of your Joomla website :–
[host]/[sitename]/administrator/index.php
From the navigation menu on top go to Extensions Manage Install.
Drag and drop your miniorange-joomla-saml-idp.zip file in the area indicated in the image below or browse and select the file to install the plugin.
After the installation go to Extensions Manage Manage.
Search for miniorange in the search box and enable the two extensions System and User that are disabled by default.
After enabling the extensions go to Components miniOrange Joomla IDP Account Setup.

Go to Service Provider tab and fill in the Service Provider Name, SP Entity ID or Issuer, ACS URL and NameID Format. You will get these details from the Service Provider that you are using. Fill in the other fields according to your requirements. Click on Save.

Enter the following values:

Service Provider Name	Choose appropriate name according to your choice .
SP Entity ID or Issuer	Service Provider Entity ID .
ACS URL	SP Assertion Consumer Service URL .
X.509 Certificate (optional) [For Signed Request]	Paste certificate value you copied from the Metadata file .
NameID Format	Select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress.
Assertion Signed	Checked.

Click on NameID Attribute tab. Select the NameID Attribute and then click on Save Button.

Miniorange Joomla SAML Single Sign-On (SSO) supports multiple known SPs like Panopto, Lucid charts, Agylia LMS, Moodle, Inkling SP, Zendesk, Tableau, Owncloud, miniOrange WordPress SAML SP, Drupal SAML SP, Workplace by Facebook, Salesforce, Zoho, Klipfolio and many more.

You have successfully completed your miniOrange SAML 2.0 IDP configurations. Still, if you are facing any difficulty please mail us on joomlasupport@xecurify.com .

Step 1 Configure RocketChat as Service Provider
Step 2 Configure Joomla as IDP

Free Trial

If you are looking for anything which you cannot find, please drop us an email on joomlasupport@xecurify.com

SAML Single Sign-On into RocketChat using Joomla IDP Plugin | RocketChat SSO

RocketChat

Step 1: Configure RocketChat as Service Provider

Contents

STAY CONNECTED

Product

Solutions

Why miniorange

Company