I'm trying to set up and configure SimpleSAMLphp on a MediaWiki installation to connect with and authenticate via the AWS SSO service. I'm totally new to setting up SSO, so am completely stumbling and haven't been able to track down much of any documentation on how to do this. The end goal is to move the entire MediaWiki site behind authentication. SimpleSAMLphp and PluggableAuth are installed and a rough configuration is in place. The LocalSettings.php file currently contains the following:
# PluggableAuth
wfLoadExtension( 'PluggableAuth' );
$wgGroupPermissions['*']['autocreateaccount'] = false;
$wgPluggableAuth_EnableAutoLogin = true;
$wgPluggableAuth_EnableLocalLogin = true;
$wgPluggableAuth_EnableLocalProperties = false;
$wgPluggableAuth_ButtonLabel = 'Sign On with SSO';
$wgPluggableAuth_ExtraLoginFields = [];
#SimpleSAML
wfLoadExtension( 'SimpleSAMLphp' );
$wgSimpleSAMLphp_InstallDir = '/bitnami/mediawiki/extensions/SimpleSAMLphp';
$wgSimpleSAMLphp_AuthSourceId = 'https://portal.sso.us-west-2.amazonaws.com/saml/assertion/<<redacted>>';
$wgSimpleSAMLphp_RealNameAttribute = 'RealNameAttribute';
$wgSimpleSAMLphp_EmailAttribute ='EmailAttribute';
$wgSimpleSAMLphp_UsernameAttribute = 'UsernameAttribute';
When we go to the MediaWiki, we're presented with the login screen and an option to use SSO. Once the username and password are provided and we click on the "Sign On with SSO" button, we're given a blank http://<<site>>/wiki/Special:PluggableAuthLogin page.
What are we missing?