forked from mirror/Part-DB.Part-DB-server
Added a SAML_BEHIND_PROXY env, which must be set if Part-DB is behind a reverse proxy when using SAML
The php-saml library use its own logic to determine the current path, and we need to set the use_proxy_vars so that it respects the proxy FORWARDED headers. This should fix issue #436
This commit is contained in:
Jan Böhmer
parent
07535c26a6
commit
83d43d931c
5 changed files with 12 additions and 1 deletions
|
|
@ -137,6 +137,8 @@ want to edit it on docker, you have to map the file to a volume.
|
|||
|
||||
* `SAML_ENABLED`: When this is set to 1, SAML SSO is enabled and the SSO Login button is shown in the login form. You
|
||||
have to configure the SAML settings below, before you can use this feature.
|
||||
* `SAML_BEHIND_PROXY`: Set this to 1, if Part-DB is behind a reverse proxy. See [here]({% link installation/reverse_proxy.md %})
|
||||
for more information. Otherwise leave it to 0 (default.)
|
||||
* `SAML_ROLE_MAPPING`: A [JSON](https://en.wikipedia.org/wiki/JSON) encoded map which specifies how Part-DB should
|
||||
convert the user roles given by SAML attribute `group` should be converted to a Part-DB group (specified by ID). You
|
||||
can use a wildcard `*` to map all otherwise unmapped roles to a certain group.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue