Metadata for SAML authentication #2762

New Issue

OVERLORD · 2026-02-05T05:05:57+03:00

OVERLORD commented

2026-02-05 05:05:57 +03:00

Originally created by @max1c on GitHub (Apr 26, 2022).

Attempted Debugging

I have read the debugging page

Searched GitHub Issues

I have searched GitHub for the issue.

Describe the Scenario

My identity provider says that the vendor must provide the metadata and the list of required attributes. Here is what they said:

So, from the vendor, you need:

the metadata for the SP (or at the very least, the entityID)

the list of attributes that need to be provided by the IdP

Where can I get these things?

Exact BookStack Version

22.03.1

Log Content

No response

PHP Version

No response

Hosting Environment

Debian 11.3 using docker container using LinuxServer.io recipe.

Originally created by @max1c on GitHub (Apr 26, 2022). ### Attempted Debugging - [X] I have read the debugging page ### Searched GitHub Issues - [X] I have searched GitHub for the issue. ### Describe the Scenario My identity provider says that the vendor must provide the metadata and the list of required attributes. Here is what they said: >So, from the vendor, you need: >1) the metadata for the SP (or at the very least, the entityID) >2) the list of attributes that need to be provided by the IdP Where can I get these things? ### Exact BookStack Version 22.03.1 ### Log Content _No response_ ### PHP Version _No response_ ### Hosting Environment Debian 11.3 using docker container using LinuxServer.io recipe.

OVERLORD added the 🐕 Support label 2026-02-05 05:05:57 +03:00

OVERLORD closed this issue

2026-02-05 05:06:00 +03:00

OVERLORD commented

2026-02-05 05:06:05 +03:00

@ssddanbrown commented on GitHub (Apr 26, 2022):

1. the metadata for the SP (or at the very least, the entityID)

While SAML2 is active and configured your metadata will be found at <your_bookstack_base_url>/saml2/metadata.
This URL is also the entityID.

2. the list of attributes that need to be provided by the IdP

The exact attributes can be configured in BookStack to map to your IDP.
BookStack makes use of the following details:

Email Address
External (IDP) ID
Display Name (BookStack can combine multiple attributes for this if required)
Groups (If using group syncing).

Detail regarding the exact options can be found in our docs:
https://www.bookstackapp.com/docs/admin/saml2-auth/

@ssddanbrown commented on GitHub (Apr 26, 2022): ### 1. the metadata for the SP (or at the very least, the entityID) While SAML2 is active and configured your metadata will be found at `<your_bookstack_base_url>/saml2/metadata`. This URL is also the entityID. ### 2. the list of attributes that need to be provided by the IdP The exact attributes can be configured in BookStack to map to your IDP. BookStack makes use of the following details: - Email Address - External (IDP) ID - Display Name (BookStack can combine multiple attributes for this if required) - Groups (If using group syncing). Detail regarding the exact options can be found in our docs: https://www.bookstackapp.com/docs/admin/saml2-auth/

OVERLORD commented

2026-02-05 05:06:09 +03:00

@max1c commented on GitHub (Apr 26, 2022):

Thank you Dan for the information and all your hard work.

@max1c commented on GitHub (Apr 26, 2022): Thank you Dan for the information and all your hard work.

Sign in to join this conversation.

Branches Tags

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#2762