Install

Works with Drupal: 7.x

Using Composer to manage Drupal site dependencies

Downloads

Download samlauth-7.x-1.0.tar.gztar.gz 15.98 KB
MD5: 92ae1a7034d940970f87740fcd6729ea
SHA-1: e3ff8d4037f8df2dc78aba937648342d161671f7
SHA-256: 76c51502aa5492e432ecd4bd3c3310cf298e5b8ab0c707990a2a73c14314e2a6
Download samlauth-7.x-1.0.zipzip 18.24 KB
MD5: bd3e13a523e888798a82ce255d363228
SHA-1: ac8ba8be46ea965b0825dc05829dcc7b668909b0
SHA-256: b773d3cb45ace0b8aa32ff5fbb67b2c2c4eef806ae243f455d72ec698f7097bc

Release notes

Please check when installing:

The "Allow SAML users to login directly with Drupal" did exactly the opposite from what it said: it would only allow SAML users to log using the Drupal login screen, when it was deselected. The code has now been changed to do what the option says, so the behavior will change after installing the new version.

Also, it is recommended to walk through the new options on the configuration screen and select them if appropriate (e.g. 'Strict mode' which is recommended to enable if at all possible).

All issues addressed:

#3113451 by nironan: "Allow SAML users to login directly with Drupal" not working

#3043713 by klausi: set baseurl in Saml2\Settings (Note roderik: this likely enables working behind a reverse proxy without additional configuration.)

#3044116 by klausi: Update SAML Auth library to version 3 for PHP 7.2

#3043711 by klausi: Imrove watchdog logging to better track errors

Implement SLS:

  • #2981952 by terrywmc: Fix for SLS path not found and timezone warning when creating new user
  • #3043704 by klausi: Make user logout more robust
  • #3065889 by smfsh, nironan, klausi, roderik: Actually implement SLS, which also fixes open redirect introduced in #2981952

More options to configure checks in the SAML conversation:

  • #3043713 by klausi, nironan, roderik: Do not use insecure SHA-1 digest and use strict response checking
  • #3086441 by Antonnavi, nironan, roderik: fix Invalid response, status: InvalidNameIDPolicy
  • #3004680 by roderik: take over configuration options from D8 version and add 'Require assertions to be signed'.
Created by: roderik
Created on: 21 Apr 2021 at 18:05 UTC
Last updated: 28 Apr 2021 at 16:57 UTC
Bug fixes
New features
Insecure

Other releases