G3/3w/3.10.0/DocTecnica/Interfaces/virtualhost_saml

Configuración Virtual Host SAML Gestión <-> Autogestión

Simplesaml

* Editar /path/to/simplesaml/idp.conf

<Directory /path/to/simplesaml/www>
        <IfModule !mod_authz_core.c>
                Order allow,deny
                Allow from all
        </IfModule>
        <IfModule mod_authz_core.c>
                Require all granted
        </IfModule>
</Directory>

<VirtualHost *:80>
    ServerAdmin admin@uni.edu.ar
    ServerName auth.simplesaml.com
    ServerAlias sp.simplesaml.com
    DocumentRoot /path/to/simplesaml/www
</VirtualHost>

* Editar /path/to/simplesaml/config/config.php

...
'baseurlpath' => 'http://auth.simplesaml.com/',
...

* Editar /etc/hosts

127.0.0.1       auth.simplesaml.com
127.0.0.1       sp.simplesaml.com

Gestión

* Editar el archivo /path/to/gestion/lib/toba/instalacion/saml.ini

[sp]
baseurlpath = /toba_2.6_sp/
session.phpsession.cookiename = TOBA_SESSID
idp = http://auth.simplesaml.com/saml2/idp/metadata.php


[idp:http://auth.simplesaml.com/saml2/idp/metadata.php]
name = Your IdP
SingleSignOnService = http://auth.simplesaml.com/saml2/idp/SSOService.php
SingleLogoutService = http://auth.simplesaml.com/saml2/idp/SingleLogoutService.php
certFingerprint = 3A:5F:BD:0B:D1:DD:10:76:A6:02:CD:49:77:D5:79:90:86:E6:D6:B8

Autogestión

* /path/to/autogestion/instalacion/saml/settings.php

...
$url_idp = 'http://auth.simplesaml.com';
...