Xenforo With SAML and/or Auth0

D

DailyDrop

New member
Hi,
I am the technical lead for a brand named DailyDrop.
I am interested in using xenforo as the community software of choice for our startup.

I am currently running a Auth0 authentication backend (https://auth0.com/) which will eventually be used to authenticate every one of our apps.
Is there a plugin that will allow me to add a custom SSO (like you would add a Google login but for our one) or will I have to program this in myself. (I also am able to use LADP and Rest if needed)
This forum: http://www.mgn.tm/forum/ has intergrated a custom SSO (the freedom accounts). I would like to accomplish the same thing.
If you would like to take a look at our login in order to help us better let me know and I will send the link privately as we haven't released it yet.

Thanks,
DailyDrop
 
Sort by date Sort by votes
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
 
Upvote 0 Downvote
Chris D said:
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
Click to expand...

Thanks for your helpful advice!
We are certainly going to be using xenforo.

Yes Oauth2 is supported by auth0 and we actually have all the things needed for that in or dashboard. I will take a look at the existing Intergrations and go from there. Can't wait for xenforo 2 to see how this all pays off.

Thanks,
DailyDrop
 
Upvote 0 Downvote
Chris D said:
There is a framework built in to XF which allows developers to integrate additional login/registration providers, as you have seen, such as Facebook, Google and Twitter.

There isn't, however, anything that would automatically support SAML or LDAP.

The authentication flow used by our existing external providers is, as is standard for such integrations, OAuth 2.0. I'm not familiar with Auth0 but I was curious and I found this:

https://auth0.com/docs/protocols/oauth2

If this means that you can interface with Auth0 using the OAuth 2.0 flow, then this might be the approach to take. In XF1, you will just take a steer in direction as to how the existing ones are implemented. In the future when XF2 is released and you upgrade to that, then we have an OAuth 2.0 client built in which will still require some custom code, but the library we use actually has an Auth0 provider available, so that should reduce the amount of custom code you need: http://oauth2-client.thephpleague.com/providers/thirdparty/

So, definitely possible, and there are parts of the framework which will make it easier, but you will need some amount of programming to hook everything up.

Hope that helps.
Click to expand...
I'm curious what you think of this because I'm researching how to integrate Ory Kratom w/ XF - https://www.ory.sh/docs/hydra/concepts/before-oauth2
 
Upvote 0 Downvote
Kratos*
But seriously - I can't tell if OAuth is officially supported by XF. Devs? Can you write some documentation that helps us make new "connections" with XF, not just the big 5 social media?
Thanks.
 
Upvote 1 Downvote

Similar threads

S
  • Question Question
XF 2.1 How to logout user via back-channel logout?
Replies
1
Views
194
sajal
S
S
  • Question Question
XF 2.2 How to login user programmatically in XF?
Replies
2
Views
443
sajal
S
C
  • Solved
XF 2.2 Authenticating to XF from standalone php app
Replies
2
Views
241
chris p
C
Chernabog
Add-on Any add-ons to showcase partner logos or the like?
Replies
8
Views
470
Chernabog
Chernabog
L
XF 2.2 Xenforo Login Issues
Replies
0
Views
255
leebo
L
Top Bottom