Versions Compared

Old Version 2

changes.mady.by.user Kevin Yeh

Saved on

compared with

New Version 3

changes.mady.by.user Kevin Yeh

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

cat SF-SSO.php SF-SSO-2.php SF-SSO-3.php > /var/simplesamlphp/metadata/saml20-idp-remote.php


 Changes Changes to /var/simplesamlphp/config/authsources.php

...

'sp1' => [
    'saml:SP',
  'entityID' => 'https://drcloudehr-idd-qa-dev-ed.develop.my.salesforce.com',
],
'sp2' => [
    'saml:SP',
  'entityID' => 'https://okta.com/',
],

 Changes Changes to /var/simplesamlphp/metadata/dc-idp-mapping.php

...

$DC_IDP_MAPPINGS = [
     // idp-tag                     DrCloud SiteID                   idp-entity-id
       'qa'         =>['dc_site_id' => 'qa'          , 'idp_entity' => 'sp1'],     //--example (Connects to qa site using "Salesforce IdP"
      'secondqa-okta'       =>['dc_site_id' => 'qa'          , 'idp_entity' => 'sp2'],     //–example (Connects to qa site using "Okta IdP"
];

These mapping consist of an idp-tag that associates a SiteID(dc_site_id) with one of the sources(idp_entity) defined in authsources.php

...

The idp-tag does not need to match the V1 site id.  However, when possible, it is encouraged to do so.  If multiple IdP need to connect to the same V1 site,  then only one of the idp-tags can match the V1 site id