Top Menu

Jump to content
Home
    Modules
      • Projects
      • Activity
      • Work packages
      • Gantt charts
      • Calendars
      • Team planners
      • Boards
      • News
    • Getting started
    • Introduction video
      Welcome to OpenProject Community
      Get a quick overview of project management and team collaboration with OpenProject. You can restart this video from the help menu.
    • Help and support
    • User guides
    • Videos
    • Shortcuts
    • Community forum
    • Enterprise support
    • Additional resources
    • Data privacy and security policy
    • Digital accessibility (DE)
    • OpenProject website
    • Security alerts / Newsletter
    • OpenProject blog
    • Release notes
    • Report a bug
    • Development roadmap
    • Add and edit translations
    • API documentation
  • Sign in
      Forgot your password?

      or sign in with your existing account

      Google

Side Menu

  • Overview
  • Activity
    Activity
  • Roadmap
  • Work packages
    Work packages
  • Gantt charts
    Gantt charts
  • Calendars
    Calendars
  • Team planners
    Team planners
  • Boards
    Boards
  • News
  • Forums

Content

You are here:
  1. Messages
Support Installation & Updates
  1. OpenProject
  2. Forums
  3. Support Installation & Updates
  4. Help needed on Single Sign-On with OmniAuth SAML

Help needed on Single Sign-On with OmniAuth SAML

Added by Anoop S Menon over 7 years ago

I am try to set up the SSO (Single Sign-On) integration with OpenProject using the OpenProject OmniAuth SAML Single-Sign On plugin. I have configured it with the relevant details. Generated the metadata and registered it with the IDP. The plugin does show an additional login button on the openproject login form. Clicking it is properly redirecting to the IDP’s login page. After giving the credentials, it is correctly redirecting to the AssertionConsumerService URL I have mentioned. It is of the form https://example.com/openproject/auth/saml/callback. But the page is showing a bad request error.

Do I have to add additional code corresponding to the AssertionConsumerService url in the controllers? The plugin is supposed to work on fly if the installation is proper without needing to write any addional code.

Any help is greatly appreciated.

Thanks


Replies (3)

RE: Help needed on Single Sign-On with OmniAuth SAML - Added by markus hochhold about 7 years ago

Did you find a solution? We have a similar problem.

The response which comes back is valid, but we always get a log entry with “No fingerprint or certificate on settings”.

We are using version 7.3.1.

RE: Help needed on Single Sign-On with OmniAuth SAML - Added by Anoop S Menon about 7 years ago

Have you specified the certificate and private key details in the settings? I had to edit ../lib/onelogin/ruby-saml/settings.rb file to get things moving.

RE: Help needed on Single Sign-On with OmniAuth SAML - Added by Jonatan Zint almost 7 years ago

We are experiencing the same issue using the most recent OP docker distribution. The described file lib/onelogin/ruby-saml/settings.rb is not here.

The documentation from https://github.com/finnlabs/openproject-auth_saml/does not seem to be complete or this is a legit bug.

I opened an issue: https://github.com/finnlabs/openproject-auth_saml/issues/1

  • (1 - 3/3)
Loading...