Can we get some kind of proper SSO support?
Feature Requests
Anything. SAML. Oauth. OpenID. LDAP, even.
Doesn’t even need to explicitly be for any of those things, just some kind of universal starting point for making our own SSO plugins that don’t involve starting from scratch with extension hooks. Would make life so much easier, and I’d be able to deploy EE on more client projects.
Few complaints I have about this software, but the glaring lack of any real api for external authorization or identity services feels like a huge blind spot in what’s otherwise a pretty comprehensive framework.
+1 for our organisation.
Please, please implement some form of SSO.
I have to push this along too - I’ve lost 2 projects in as many months because I need to add Google/Facebook/Twitter login to the site, and EE3 third-parties are currently not supporting more than Facebook.
Frankly, this is a long overdue - and as a company EllisLab needs to take this seriously and stop relying on flaky third-parties to fill in the gaps.
I’m seriously considering just doing a SAML bridge on a generic homemade API extension that I could throw on github so people can tie in other extension hooks for what they need. Got one thing in the pipeline where SSO across community, project management, and team management software, would be super useful. SAML is universal enough to cover a lot of shit. Maybe someone else can tackle an oAuth hook for it. I’d like an API I can just communicate with JSON.
Obviously some kind of permissions/keys system for connected apps, and the ability to turn off/on access to specific extension hooks. And over a decade in the shadier parts of the internet gives me access to some people really skilled at security, hehe.
Just a matter of time to read a ton of docs and go through it “when I have time.” This is probably just gonna be a backburner idea unless it looks like it can make help one of my projects enough to make it worth the timesink. Would be worth it as a learning experience on it’s own, before I put it in the hands of the open source community.
Wish I hadn’t spent so much of my youth embroiled in drugs, so much Javascript I barely have a grasp on. The world certainly keeps spinning without you, and catching up is a process, that’s for sure.
Any progress on this front? Interested in OpenID or even SSO via Azure AD! Anyone succeed with this, or is EE working on this?
Yes! Rein De Vries has worked up a Social Sign In so users can log in using their facbook, twitter, yahoo or google account – that’s definitely a step in the right direction.
Yes, we have recently published a module(plugin) to do Single Sign On with any IdP.
You can check it at devot-ee.com by the name ‘miniorange saml sso’
Here is the link. https://devot-ee.com/add-ons/miniorange-saml-2.0-sso-sp
For any queries, feel free to mail us at [email protected]
- miniOrange Security Solutions
Nice work
Hi aquicksharp, Did you try the addon? Any feedback ? If you need SSO support or have any queries, you can mail us at [email protected]
LDAP is the most I found one for 2500 ERU WTF