Extension SAML2 Authentication Legacy

Extension Basics

Title	SAML2 Authentication Legacy
Name	ckanext-saml2
Type	Public extension
Description	Legacy SAML 2.0 authentication implementation for single sign-on integration with identity providers.
CKAN versions	~2.8.0, ~2.9.0, ~2.10.0 Show details These CKAN Versions are exactely matched: 2.8.0 2.8.1 2.8.10 2.8.11 2.8.12 2.8.2 2.8.3 2.8.4 2.8.5 2.8.6 2.8.7 2.8.8 2.8.9 2.9.0 2.9.1 2.9.10 2.9.11 2.9.2 2.9.3 2.9.4 2.9.5 2.9.6 2.9.7 2.9.8 2.9.9 2.10.0 2.10.1 2.10.2 2.10.3 2.10.4 2.10.5 2.10.6 2.10.7 2.10.8
Download-Url (zip)	https://github.com/datopian/ckanext-saml2.git#egg=ckanext-saml2
Download-Url commit date	2020-05-28
Url to repo	https://github.com/datopian/ckanext-saml2
Category	Authentication & Security

Background Infos

Description (long)	Show details The SAML2 Authentication Legacy extension provides foundational SAML 2.0 single sign-on authentication capabilities for CKAN, implementing core authentication protocols for integration with enterprise identity providers and federated authentication systems through standardized SAML-based identity federation. This foundational extension establishes basic SAML 2.0 authentication workflows, enabling users to authenticate through existing organizational identity infrastructure including Active Directory Federation Services, Shibboleth, and other SAML-compliant identity providers without requiring separate CKAN credentials. The system supports standard SAML authentication flows with basic user provisioning, attribute mapping, and session management for seamless integration with organizational identity management systems. Core features include SAML assertion processing, basic attribute extraction from SAML responses, and fundamental integration with CKAN’s user authentication system for automated login workflows. The extension provides essential SAML metadata handling, basic certificate management for SAML signature verification, and standard SAML protocol compliance for interoperability with common identity providers. Administrative functionality includes basic SAML configuration management, authentication logging for troubleshooting, and fundamental user mapping capabilities for organizational identity integration. Integration capabilities support standard SAML metadata exchange, basic identity provider configuration, and compatibility with common enterprise identity management systems through standard SAML protocols. The system implements core security features including SAML assertion validation, basic session management, and standard SAML security protocols for secure authentication workflows. Essential for organizations requiring basic SAML authentication integration, enterprises implementing foundational single sign-on capabilities, institutions needing standard identity provider connectivity, and deployments where basic SAML compliance, fundamental authentication integration, and standard identity federation are sufficient for organizational authentication requirements and basic enterprise identity management needs.
Version	Latest
Version release date	2020-05-28
Contact name	Datopian Team
Contakt email	info@datopian.com
Contact Url	(not set)

Installation Guide

Configuration hints	Legacy SAML2 authentication with basic identity provider integration
Plugins to configure (ckan.ini)	saml2
CKAN Settings (ckan.ini)	# ckanext.saml2.idp_metadata = /path/to/idp-metadata.xml # ckanext.saml2.sp_entity_id = https://your-ckan.com # ckanext.saml2.sp_acs_url = https://your-ckan.com/saml2/acs # ckanext.saml2.attribute_map.email = urn:oid:0.9.2342.19200300.100.1.3 # ckanext.saml2.attribute_map.fullname = urn:oid:2.5.4.3 # ckanext.saml2.enable_logout = true
DB migration to be executed	(not set)

<< back to Extensions