miniOrange provides a ready to use solution for Joomla. This solution ensures that you are ready to roll out secure access to your Joomla site within minutes.
Note : The information contained on this page does not create a joint venture, partnership, agency or other form of association, or an express or implied license grant by either party to the other under any patent, trademark, copyright, trade secret or other intellectual property right.
miniOrange SAML SSO Plugin acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and various SAML 2.0 supported Identity Providers to securely authenticate the user to the Joomla site.
We Support plethora of SAML 2.0 Compliant Identity Providers like Shibboleth, SimpleSamlPhp, Okta, ADFS, Salesforce, OpenAM, Centrify, Ping, IBM Tivoli Identity Manager, RSA FIM (Federated Identity Manager), Oracle Identity Manager, miniOrange etc.
Easily Configure the Identity Provider by providing just the SAML login URL, IDP Entity ID and Certificate.
Use the Attribute Mapping feature to map joomla user profile attributes to your IdP attributes.
Use the Role Mapping feature to assign roles in your IdP to your joomla users during auto registration.
Automatic user registration after login if the user is not already registered with your site.
Backend and Frontend Login Supported for Super User. If user is Super User, the user will be logged into both frontend and backend of the site.
No need to sign in again in the admin panel (backend) for Super User, once he is logged into frontend of the site via Single Sign On. [Premium Feature]
We provide active support. If you require any Single Sign On application or need any help with installing this plugin, please feel free to email us at email@example.com or Contact us.
We have thousands of happy customers using this, click here to have a look.
In order to setup SAML Single Sign (SSO), you need to follow these 4 steps:
Configure Single Sign-On Settings in your Idp.
Download the plugin from miniOrange and Install it in Joomla.
Configuring the plugin.
Adding SAML login link in Joomla.
Follow the Step-by-Step Guide given below for Joomla Single Sign On (SSO) for SAML.
Step 1: Configure Single Sign-On Settings in your Idp.
Step 2: Download the plugin from miniOrange and Install it in Joomla
You can download the plugin zip file from the download link given at top of this page.
Login as administrator in Joomla.
Click on Extension Manager under Extensions.
The Extension Manager is used to install extensions in Joomla. Here you have three options to choose from to install your extension. In most cases, you should go with the first option. The three options are:
Upload Package File
Install from Directory
Install from URL
Choose miniOrange Joomla plugin file to install (i.e. miniorangesaml.zip).
Install the plugin.
Step 3: Configuring the plugin
In the Joomla admin interface, click on Plugin Manager under Extensions.
The Plugin Manager allows you to enable and disable Joomla plugins and to edit plugin details and options. It is also useful for quickly enabling or disabling multiple plugins at the same time.
Search for miniorange in plugins.
Click on the plugin name and go to Identity Provider Settings tab.
Copy the following data from your Idp setup:
1. Idp Entity ID
2. Saml Login Url
3. X.509 Certificate
and save it here in the plugin Identity Provider Settings.
X.509 Certificate -
Open your Idp certificate in a notepad and copy its contents here. For Example- ----Begin Certificate----
After the Idp Settings are done. You can go to Attribute Mapping Tab to map user attributes from idp to your joomla user attributes.
Go to Group Mapping Tab if you want to map groups from your idp to Joomla user group when auto creating the user in joomla.
Once the settings are done enable the plugin from the Plugin Manager.
Step 4: Adding SAML login link in Joomla
The SAML login link can be added to Joomla main login form as follows:
Login as administrator in Joomla.
Click on Template Manager under Extensions.
The Template Manager can be used to edit files, create files and folders and even create overrides directly inside your admin area. Overrides created in this edit screen are Template overrides and not to be confused with Layout Overrides.
Click on Templates in the sidebar.
Select the site template that is currently being used (for example: Protostar).
Now select default_login.php under html->com_users->login.
Search for the JLOGIN button in default_login.php.
After this button, add the SAML Login link by adding code -
style="padding-left:20px;">Login with Idp</a>
Edit the base path in the login link to your joomla site url. You can customize the look and feel of the link according to your theme. You can convert it to a button if you want.
After successfully completing all the steps, a SAML Login link appears on your user login screen. You can see the sample Joomla site screen below.
When you click on the SAML Login link you will be redirected to your Idp login page.
Login to your idp with username / password. Once you are authenticated, you will be logged in to joomla site.
miniOrange supports both SAML based Single Sign On into Joomla as well as OpenID connect based Single Sign On. This guide explains SAML based Single Sign On into Joomla.
In SAML SSO, miniOrange supports both IdP (Identity Provider) and SP (Service Provider) initiated Single Sign On (SSO) for Joomla.
SP Initiated Single Sign On (SSO)
In SP Initiated Login, SAML request is initiated from Joomla.
A user can login to his Joomla Account by clicking on SAML Login Link provided on the Joomla Site login page.
After clicking on SAML link, you will be redirected to Identity Provider login page like Shibboleth, SimpleSaml, Salesforce, Okta, ADFS, etc.
You have to enter your login credentials and after successful authentication, you will be redirected to your Joomla Account.
IdP Initiated Single Sign On (SSO)
In IdP Initiated Login, SAML request is initiated from any Third Party Identity Provider like Shibboleth, SimpleSaml, Salesforce, Okta, ADFS, etc.