starred/BookStack
1
0
Fork 0
mirror of https://github.com/BookStackApp/BookStack.git synced 2026-02-05 00:29:48 +03:00
Code Issues 305 Packages Projects Releases 10 Wiki Activity

Extra SAML2 configuration options #1936

New Issue
Closed
opened 2026-02-05 02:15:32 +03:00 by OVERLORD · 1 comment
OVERLORD commented 2026-02-05 02:15:32 +03:00
Owner
Copy Link

Originally created by @laerm on GitHub (Nov 13, 2020).

More SAML2 configuration options
The basic SAML2 configuration works as expected. In some cases however, more advanced settings need to be configured, such as SAML cert and key.

Adding more options to the env file, such as nameID format, SP key and cert would make such advanced settings easier to implement.

At the moment, one could use the SAML2_ONELOGIN_OVERRIDES parameter, but I'm having trouble overriding the current settings.

I tried

SAML2_ONELOGIN_OVERRIDES={"NameIDFormat":"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"}

with no luck.

Thanks for all your hard work!

Originally created by @laerm on GitHub (Nov 13, 2020). **More SAML2 configuration options** The basic SAML2 configuration works as expected. In some cases however, more advanced settings need to be configured, such as SAML cert and key. Adding more options to the env file, such as nameID format, SP key and cert would make such advanced settings easier to implement. At the moment, one could use the SAML2_ONELOGIN_OVERRIDES parameter, but I'm having trouble overriding the current settings. I tried ```xml SAML2_ONELOGIN_OVERRIDES={"NameIDFormat":"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"} ``` with no luck. Thanks for all your hard work!
OVERLORD commented 2026-02-05 02:15:40 +03:00
Author
Owner
Copy Link

@ssddanbrown commented on GitHub (Oct 25, 2021):

Hi @laerm,
As of v21.10, there are now options for SAML2 SP cert and key: https://www.bookstackapp.com/docs/admin/saml2-auth/

In regards to overrides, they're merged at a whole config onelogin level, so assuming the nameid format was for the service provider, it's be something like:

SAML2_ONELOGIN_OVERRIDES={"sp":{"NameIDFormat":"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"}}
@ssddanbrown commented on GitHub (Oct 25, 2021): Hi @laerm, As of v21.10, there are now options for SAML2 SP cert and key: https://www.bookstackapp.com/docs/admin/saml2-auth/ In regards to overrides, they're merged at a whole config onelogin level, so assuming the nameid format was for the service provider, it's be something like: ```bash SAML2_ONELOGIN_OVERRIDES={"sp":{"NameIDFormat":"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"}} ```
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
🎨 Design
📖 Docs Update
🐛 Bug
🐛 Bug
:cat2:🐈 Possible duplicate
💿 Database
Open to discussion
💻 Front-End
🐕 Support
🚪 Authentication
🌍 Translations
🔌 API Task
🏭 Back-End
Upstream
🔨 Feature Request
🛠️ Enhancement
🛠️ Enhancement
🛠️ Enhancement
❤️ Happy feedback
🔒 Security
🔍 Pending Validation
💆 UX
📝 WYSIWYG Editor
🌔 Out of scope
🔩 API Request
:octocat: Admin/Meta
🖌️ View Customization
Question
🚀 Priority
🛡️ Blocked
🚚 Export System
A11y
🔧 Maintenance
> Markdown Editor
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/BookStack#1936
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?