Extension:SAMLAuth

SAMLAuth extension enables SAML 2.0 based authentication as an alternative login mechanism from a dedicated SpecialPages URL.

Installation
Unpack the extension in the extensions directory.

include statement: require_once( "\$IP/extensions/SpecialSAMLAuth/SpecialSAMLAuth.php" ); in the LocalSettings.php file.

You must install, and configure SimpleSAMLphp as a SAML 2.0 Service Provider on the same domain as the Media Wiki instance.

Set the configuration values in $IP/extensions/SpecialSAMLAuth/SpecialSAMLAuth.php - an example is: $wgSAMLAuthSimpleSAMLphpLibPath = '/usr/local/simplesamlphp'; // Library path for SimpleSAMLphp $wgSAMLAuthSimpleSAMLphpConfigPath = '/usr/local/simplesamlphp/config'; // config.php path for SimpleSAMLphp $wgSAMLAuthSimpleSAMLphpentity = 'default-sp'; // The SimpeSAMLphp SP authentication entity $wgSAMLAuthUserNameAttr = 'eduPersonPrincipalName';    // User name attribute $wgSAMLAuthRealNameAttr = 'cn';     // Real Name attribute $wgSAMLAuthEmailAttr   = 'mail';    // email address attribute // auto logout from IdP? $wgSAMLAuthAutoLogout = true; // verify if user's IdP is known in the user settings? $wgSAMLVerifyIdP = false; // create user accounts for users that do not exist? $wgSAMLCreateUser = false; // activate debugging messages that go to apache error log $wgSamlAuthDebug = false;

Download the extension
Current version is 0.03 (as of 28/10/2010) - this is compatible with 1.15.3 to 1.17. The extension can be downloaded from SAMLAuth.