forked from ProcessMaker/processmaker
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathsamlidp.php
More file actions
69 lines (65 loc) · 2.62 KB
/
samlidp.php
File metadata and controls
69 lines (65 loc) · 2.62 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
<?php
return [
/*
|--------------------------------------------------------------------------
| SAML idP configuration file
|--------------------------------------------------------------------------
|
| Use this file to configure the service providers you want to use.
|
*/
// Outputs data to your laravel.log file for debugging
'debug' => false,
// Define the email address field name in the users table
'email_field' => 'email',
// Define the name field in the users table
'name_field' => 'name',
// The URI to your login page
'login_uri' => 'login',
// Log out of the IdP after SLO
'logout_after_slo' => env('LOGOUT_AFTER_SLO', false),
// The URI to the saml metadata file, this describes your idP
'issuer_uri' => 'saml/metadata',
// The certificate
'cert' => env('SAMLIDP_CERT'),
// Name of the certificate PEM file, ignored if cert is used
'certname' => 'cert.pem',
// The certificate key
'key' => env('SAMLIDP_KEY'),
// Name of the certificate key PEM file, ignored if key is used
'keyname' => 'key.pem',
// Encrypt requests and responses
'encrypt_assertion' => true,
// Make sure messages are signed
'messages_signed' => true,
// Defind what digital algorithm you want to use
'digest_algorithm' => \RobRichards\XMLSecLibs\XMLSecurityDSig::SHA1,
// list of all service providers
'sp' => [
// Base64 encoded ACS URL
base64_encode(env('SAML_SP_DESTINATION', '')) => [
'destination' => env('SAML_SP_DESTINATION', ''),
'logout' => '',
// SP certificate
'certificate' => '',
// Turn off auto appending of the idp query param
'query_params' => false,
// Turn off the encryption of the assertion per SP
'encrypt_assertion' => false,
],
],
// If you need to redirect after SLO depending on SLO initiator
// key is beginning of HTTP_REFERER value from SERVER, value is redirect path
'sp_slo_redirects' => [
// 'https://example.com' => 'https://example.com',
],
// All of the Laravel SAML IdP event / listener mappings.
'events' => [
'CodeGreenCreative\SamlIdp\Events\Assertion' => [],
'Illuminate\Auth\Events\Logout' => ['CodeGreenCreative\SamlIdp\Listeners\SamlLogout'],
'Illuminate\Auth\Events\Authenticated' => ['ProcessMaker\Listeners\SamlAuthenticated'],
'Illuminate\Auth\Events\Login' => ['ProcessMaker\Listeners\SamlLogin'],
],
// List of guards saml idp will catch Authenticated, Login and Logout events
'guards' => ['web'],
];