https://simplesamlphp.org/samlidp

 

Configure the SAMP SP provider in SimpleSamlPhp

To configure your JIRA/Confluence/Bitbucket/Bamboo/Fisheye/Crucible SAML SP provider you need to add the SP in SimpleSamlPhp

You can do this by adding the following lines to the saml20-sp-remote.php (replace the bitbucket-test.2improveit.eu with your server url)

Because the session duration of the plugin is default to 2 hours, you also need to adapt this in your IdP or configure the MaxAuthentication Age : Setting the MaxAuthenticationAge
/var/simplesamlphp/config/config.php
  /*
     * This value is the duration of the session in seconds. Make sure that the time duration of
     * cookies both at the SP and the IdP exceeds this duration.
     */
    'session.duration' => 2 * (60 * 60), // 8 hours -> 2 hours.



/var/simplesamlphp/metadata/saml20-sp-remote.php

$metadata['https://bitbucket-test.2improveit.eu'] = array(
	'AssertionConsumerService' => array(
					array (
						'Location' => 'https://bitbucket-test.2improveit.eu/plugins/servlet/saml/auth',
						'Binding' => 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
					),
	),
	'NameIDFormat' => 'urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified',
	'simplesaml.nameidattribute' => 'uid',
	'simplesaml.attributes' => FALSE,
);


Configure the SimpleSamlPhp IdP provider in the Plugin

Go to Manage Add-Ons and click on Configure of the Plugin :


In the IdP provider XML you can copy paste the XML in the https://<simpleSamlPhpserver>/simplesaml/saml2/idp/metadata.php?output=xhtml

or the content got by https://<simpleSamlPhpserver>/simplesaml/saml2/idp/metadata.php


  • No labels