This is NOT the official repository of the SimpleSAMLphp software.
This is a code fork for the simplesamlphp in it's configured, ready to deploy to Cloud Foundry format.
This is used for the PCF App SSO team for development purposes. It was forked from the OpsManager team's fork.
- The App SSO team pushed this app to SFO
- The URL of pushed app: https://simplesaml-sfo-devplan.sfo.identity.team
- The Metadata URL of pushed app: https://simplesaml-sfo-devplan.sfo.identity.team/saml2/idp/metadata.php
- There is a manifest.yml, so you can re-push this app from the top-level directory of this repo with:
cf api http://api.sfo.identity.team --skip-ssl-validation
cf login -u developer -p$(lpass show "Shared-App SSO (Pivotal only)/SFO Developer User" --password)
cf target -o dev-org -s dev-space
cf push
User login: admin / password
Additional user login: user / password
SAML Administrator login: admin / pizza9pixel
Install php binary if it is not installed.
Start the server from the www directory:
cd www
php -S 127.0.0.1:5000
If you need to change the port to something other than 5000
, you will need to add your domain to trusted.url.domains
in config/config.php.
The IDP metadata is in the Federation tab. If you followed the above set up, here it is for quick reference: http://127.0.0.1:5000/saml2/idp/metadata.php
There is a groups attribute called snack-groups
. Look in config/authsources.php for group definitions for each user.
The admin
user (with passsword password
) is the only member of a group called pretzel-admins
.