A presentation explaining how to build Single Sign On functionality in PHP using standards such as OpenID, OAuth and SAML. Delivered on November 4, 2010 at Zendcon in Santa Clara
25. Level 4 - SAML
Creating our own Identity Provider
26. SAML
Security Assertion Markup Language
XML standard by OASIS
Assertions contain:
Proof of Identity
Attributes
Supports XML signatures and encryption
43. SugarCRM
Plugin: didnât work
Problem: auth structure
Solution: hacking the source
Options:
Contact me if you need to get SugarCRM to do
SSO :-)
Wait for SugarCRM 6.1, it contains a working SAML
plugin (/via @smalyshev)
44. Google Apps
Requires Premier or Education Edition
ConïŹgure SAML endpoint => Done!
Docs:
http://code.google.com/googleapps/domain/sso/
saml_reference_implementation.html
59. Credits
Pictures used in this presentation are creative commons attribution licensed pictures.
Here are the owners and the URLS where the originals can be found:
âMultiple Padlock Farm Gateâ by Mike Baird - http://www.ïŹickr.com/photos/mikebaird/2354116406/
âLove Locksâ by James Manners - http://www.ïŹickr.com/photos/jmanners/443421045/
âSeguridadâ by Juan J. Martinez - http://www.ïŹickr.com/photos/reidrac/4696900602/
âHotel Keys by Henri Bergius - http://www.ïŹickr.com/photos/bergie/3468886680/
âOAuth Shinyâ by Chris Messina - http://www.ïŹickr.com/photos/factoryjoe/3343062926/
âTake a number pleaseâ by Andres Rueda - http://www.ïŹickr.com/photos/andresrueda/3259487071/
â38/365 Puzzledâ by Mykl Roventine - http://www.ïŹickr.com/photos/myklroventine/3261364899/
âVisiting Portageâ by Jeremy Bronson - http://www.ïŹickr.com/photos/jbrons/4444017497/
â_dsc8037â by Sergey Vladimirov - http://www.ïŹickr.com/photos/vlsergey/4138735474/
Application logoâs and other icons have been used under the assumption that use of them in this context is
considered fair use.