{{ t("security_setting.SAML.name") }} {{ t("security_setting.configuration") }} {% set nameForIsSamlEnabled = "settingForm[security:passport-saml:isEnabled]" %} {% set isSamlEnabled = getConfig('crowi', 'security:passport-saml:isEnabled') %} {% set useOnlyEnvVars = getConfig('crowi', 'security:passport-saml:useOnlyEnvVarsForSomeOptions') %} {% if useOnlyEnvVars %}

{{ t("security_setting.SAML.note for the only env option", "SAML_USES_ONLY_ENV_VARS_FOR_SOME_OPTIONS") }}

{% endif %}

{{ t("security_setting.desc_of_callback_URL", 'SAML Identity') }}

{% if !settingForm['app:siteUrl'] %}
{{ t("security_setting.alert_siteUrl_is_not_set", '' + t('App settings') + '') }}
{% endif %}
{% set missingMandatoryConfigKeys = getSamlMissingMandatoryConfigKeys() %} {% if missingMandatoryConfigKeys.length !== 0 %}
{{ t("security_setting.missing mandatory configs") }}
    {% for missingMandatoryConfigKey in missingMandatoryConfigKeys %}
  • {{ t("security_setting.form_item_name." + missingMandatoryConfigKey) }}
    • {% endfor %}
{% endif %}

Basic Settings

DatabaseEnvironment variables
{{ t("security_setting.form_item_name.security:passport-saml:entryPoint") }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ENTRY_POINT") }}

{{ t("security_setting.form_item_name.security:passport-saml:issuer") }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ISSUER") }}

{{ t("security_setting.form_item_name.security:passport-saml:cert") }}

{{ t("security_setting.SAML.cert_detail") }}

e.g. 

-----BEGIN CERTIFICATE-----
MIICBzCCAXACCQD4US7+0A/b/zANBgkqhkiG9w0BAQsFADBIMQswCQYDVQQGEwJK
UDEOMAwGA1UECAwFVG9reW8xFTATBgNVBAoMDFdFU0VFSywgSW5jLjESMBAGA1UE
...
crmVwBzbloUO2l6k1ibwD2WVwpdxMKIF5z58HfKAvxZAzCHE7kMEZr1ge30WRXQA
pWVdnzS1VCO8fKsJ7YYIr+JmHvseph3kFUOI5RqkCcMZlKUv83aUThsTHw==
-----END CERTIFICATE-----

{{ t("security_setting.SAML.Use env var if empty", "SAML_CERT") }}

Attribute Mapping

DatabaseEnvironment variables
{{ t("security_setting.form_item_name.security:passport-saml:attrMapId") }}

{{ t("security_setting.SAML.id_detail") }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ATTR_MAPPING_ID") }}

{{ t("security_setting.form_item_name.security:passport-saml:attrMapUsername") }}

{{ t("security_setting.SAML.username_detail") }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ATTR_MAPPING_USERNAME") }}

{{ t("security_setting.form_item_name.security:passport-saml:attrMapMail") }}

{{ t("security_setting.SAML.mapping_detail", t("Email")) }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ATTR_MAPPING_MAIL") }}

{{ t("security_setting.form_item_name.security:passport-saml:attrMapFirstName") }}

{{ t("security_setting.SAML.mapping_detail", t("security_setting.form_item_name.security:passport-saml:attrMapFirstName")) }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ATTR_MAPPING_FIRST_NAME") }}
{{ t("security_setting.Use default if both are empty", "firstName") }}

{{ t("security_setting.form_item_name.security:passport-saml:attrMapLastName") }}

{{ t("security_setting.SAML.mapping_detail", t("security_setting.form_item_name.security:passport-saml:attrMapLastName")) }}

{{ t("security_setting.SAML.Use env var if empty", "SAML_ATTR_MAPPING_LAST_NAME") }}
{{ t("security_setting.Use default if both are empty", "lastName") }}

Attribute Mapping Options

{{ t("security_setting.Treat username matching as identical_warn", "username") }}

{{ t("security_setting.Treat email matching as identical_warn", "email") }}