RO Single Sign On

Release Notes

SimpleSAMLphp

The SimpleSAMLphp library has been updated to version 1.19.8

Exclude URLs

The option to exclude certain URLs from being redirected to sign-in has been added. Full URLs or part of URLs can be added.

Usergroups

When a user signs in, the existing usergroups can be kept now instead of assigning only the defined usergroups. Usergroups can also be synced based on information provided by the Identity Provider. If Joomla is setup as Identity Provider, the users usergroups are now part of the SAML payload.

Identity Provider URLs

The Identity Provider profile now has 2 fields:

• One field for retrieving metadata
• One field for the login URL

This is usually used by ADFS.

SimpleSAMLphp modules

SimpleSAMLphp offers different kind of modules, these can now be managed via RO Single Sign On as well. This can be used to add LDAP for example as this is not enabled by default.

LDAP support

LDAP is now supported as well in addition to SAML.

Joomla 4

As of this release, RO Single Sign On is now also Joomla 4 compatible.

nameID

Many SAML providers send the username in the nameID field, this field can now be used to map to the username field.

Automatic login for backend

The automatic login for the front-end was already part of RO Single Sign On for a while, now we have added the automatic login for the backend as well. Users do not have to login manually to the backend if this option is enabled. There is the option to set an escape word, in case you want to login with a Joomla useraccount.

Install Notes

The installation and configuration of RO Single Sign On requires extensive knowledge of how SAML works and therefore we highly recommend contacting us to discuss the installation and configuration of RO Single Sign On.