Xenforo With SAML and/or Auth0

D

DailyDrop

New member
Hi,
I am the technical lead for a brand named DailyDrop.
I am interested in using xenforo as the community software of choice for our startup.

I am currently running a Auth0 authentication backend (https://auth0.com/) which will eventually be used to authenticate every one of our apps.
Is there a plugin that will allow me to add a custom SSO (like you would add a Google login but for our one) or will I have to program this in myself. (I also am able to use LADP and Rest if needed)
This forum: http://www.mgn.tm/forum/ has intergrated a custom SSO (the freedom accounts). I would like to accomplish the same thing.
If you would like to take a look at our login in order to help us better let me know and I will send the link privately as we haven't released it yet.

Thanks,
DailyDrop
 
Sort by date Sort by votes
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
 
Upvote 0 Downvote
Chris D said:
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
Click to expand...

Thanks for your helpful advice!
We are certainly going to be using xenforo.

Yes Oauth2 is supported by auth0 and we actually have all the things needed for that in or dashboard. I will take a look at the existing Intergrations and go from there. Can't wait for xenforo 2 to see how this all pays off.

Thanks,
DailyDrop
 
Upvote 0 Downvote
Chris D said:
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
Click to expand...
I'm curious what you think of this because I'm researching how to integrate Ory Kratom w/ XF - https://www.ory.sh/docs/hydra/concepts/before-oauth2
 
Upvote 0 Downvote
Kratos*
But seriously - I can't tell if OAuth is officially supported by XF. Devs? Can you write some documentation that helps us make new "connections" with XF, not just the big 5 social media?
Thanks.
 
Upvote 1 Downvote

Similar threads

Q
  • Question Question
Thinking of getting Xenforo with the intention of using it with WordPress... Need some questions answered.
Replies
0
Views
38
qazwsxedcrfv1234
Q
F
XF 2.3 Integrating XenForo with a PHP website to display Xen Header and Footer
Replies
0
Views
44
FizRichard
F
T
  • Question Question
Looking for some sort of Single Sign On or auto-login from our system. Can Xenforo do that?
Replies
12
Views
1K
beerForo
beerForo
lobanz
XF 2.2 How run addon code when user registration is complete and/or approved
Replies
3
Views
997
Jeremy P
Jeremy P
Q
  • Question Question
Looking to replace the comments section of my WordPress site with a forum. Should I use Xenforo, or a native WordPress forum solution (like BBPress)?
Replies
5
Views
1K
Dad.
D
Back
Top Bottom