PHPackages gauss-allianz/shibboleth-authentication-bundle - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. gauss-allianz/shibboleth-authentication-bundle ActiveSymfony-bundle[Authentication & Authorization](/categories/authentication) gauss-allianz/shibboleth-authentication-bundle ============================================== Bundle for Shibboleth authentication in Symfony for Service Provider (SP) applications. 3.0.4(2mo ago)01.0kApache-2.0PHPPHP >=8.2CI passing Since Feb 3Pushed 2mo agoCompare [ Source](https://github.com/gauss-allianz/shibboleth-authentication-bundle)[ Packagist](https://packagist.org/packages/gauss-allianz/shibboleth-authentication-bundle)[ RSS](/packages/gauss-allianz-shibboleth-authentication-bundle/feed)WikiDiscussions main Synced 1mo ago READMEChangelogDependencies (5)Versions (4)Used By (0) ShibbolethAuthenticationBundle ============================== [](#shibbolethauthenticationbundle) Introduction ------------ [](#introduction) Shibboleth is a Single-Sign-On system made for web services. For more information about Shibboleth see . This bundle provides an authenticator to use the authentication mechanism of Symfony 5.3+. If your legacy application relies on the guard authentication mechanism, see the following repositories for more information. - Symfony Version 4.2 you should see (other branch). - Symfony Version 3.4 you should see (other branch). - Symfony Version 2.8 you should see . - Symfony previous Version 2.8 you should see . Installation ------------ [](#installation) 1. Install this bundle by using composer ``` composer require gauss-allianz/shibboleth-authentication-bundle ``` 2. Create your own user provider, which implements the `ShibbolethUserProviderInterface` ``` namespace App\Security\User; use GaussAllianz\ShibbolethAuthenticationBundle\Security\User\ShibbolethUserProviderInterface; readonly class UserProvider implements ShibbolethUserProviderInterface { ... } ``` 3. (Optionally) Create and register an Exception Listener Configuration ------------- [](#configuration) 1. Configure the Shibboleth authentication bundle to your needs at `config/packages/shibboleth_authentication.yaml```` shibboleth_authentication: username_attribute: "%shibboleth_username_attribute%" # required, the Shibboleth user name attribute logout_route: '_logout_main' # required, the name of the logout route, depends your firewall configuration, defaults to '/logout' session_key: "%shibboleth_session_key% # (optional), name of the environment variable holding the Shibboleth session, defaults to 'Shib-Session-ID' redirect_target: '%env(resolve:LOGIN_REDIRECT_TARGET)%' # (optional), target where to redirect after successful authentication, defaults to null attribute_definitions: # (optional), mapping table from Shibboleth attributes to user attributes : # key:value pair, e.g. mail: email success_handler: # (optional), a reference to an authentication handler that should be called within on successful authentication, defaults to null failure_handler: # (optional), a reference to an authentication handler that should be called on authentication failure (optional) logout_handler: redirect_target: "%logout_redirect_target%" # (optional), a target where to redirect after logout if the requests provides no logout URL, defaults to null ``` 2. Add service declaration for your user provider in `config/services.yaml```` services: shibboleth_authentication.user_provider: class: App\Security\User\UserProvider ``` 3. Configure your firewall to your needs at `config/packages/security.yaml```` security: firewalls: main: logout: path: /logout target: / custom_authenticators: - shibboleth_authenticator entry_point: shibboleth_authentication.entrypoint ``` How to test Shibboleth authentication locally in your development environment ----------------------------------------------------------------------------- [](#how-to-test-shibboleth-authentication-locally-in-your-development-environment) ### Service Provider for dev environment [](#service-provider-for-dev-environment) ``` 1. Register your (test) Service Provider within your AAI/at your Identity Provider 2. Configure your web server to use Shibboleth authentication 3. Configure Shibboleth 4. Create certificates for your domain (and configure it in the web server) and the shibboleth communication 5. (Add entry for your SP domain in your '/etc/hosts' (Linux)) ``` Setting up a local IdP/SP (test) infrastructure can therefore be a very time-consuming job, but you can test and debug the interaction with your identity provider. For more information about the Shibboleth configuration, see Shibboleth Service provider documentation . ### Simulate shibboleth authentication within your web server [](#simulate-shibboleth-authentication-within-your-web-server) An easier way to test your functionality on your local system is to simulate the shibboleth authentication. If you know which information is usually sent from your identity provider to the Shibboleth daemon, then you can use Apaches `Setenv` directive or Nginx `fastcgi_param` to adopt this. ``` location ~ \.php(/|$) { internal; fastcgi_param Shib-Identity-Provider "myProvider"; fastcgi_param mail "user@company.com"; fastcgi_param Shib-Session-ID "SessionABC123"; fastcgi_param Shib-Application-ID "nameOfYourShibbolethApplication"; } ``` ### Health Score 44 — FairBetter than 92% of packages Maintenance86 Actively maintained with recent releases Popularity18 Limited adoption so far Community8 Small or concentrated contributor base Maturity52 Maturing project, gaining track record Bus Factor1 Top contributor holds 80% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~196 days Total 3 Last Release 70d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/950afd981d741cf89af20bee25224af6014f6668a73facc376f9702270737d77?d=identicon)[gauss-allianz-user](/maintainers/gauss-allianz-user) --- Top Contributors [![JensLukaschkowitz](https://avatars.githubusercontent.com/u/65335057?v=4)](https://github.com/JensLukaschkowitz "JensLukaschkowitz (8 commits)")[![gauss-allianz-user](https://avatars.githubusercontent.com/u/25197170?v=4)](https://github.com/gauss-allianz-user "gauss-allianz-user (2 commits)") --- Tags symfonyAuthenticationshibbolethgaussgauss-allianzallianz ### Embed Badge ![Health badge](/badges/gauss-allianz-shibboleth-authentication-bundle/health.svg) ``` [![Health](https://phpackages.com/badges/gauss-allianz-shibboleth-authentication-bundle/health.svg)](https://phpackages.com/packages/gauss-allianz-shibboleth-authentication-bundle) ``` ### Alternatives [simplesamlphp/simplesamlphp A PHP implementation of a SAML 2.0 service provider and identity provider. 1.1k12.4M193](/packages/simplesamlphp-simplesamlphp)[sulu/sulu Core framework that implements the functionality of the Sulu content management system 1.3k1.3M152](/packages/sulu-sulu)[scheb/2fa Two-factor authentication for Symfony applications (please use scheb/2fa-bundle to install) 578630.7k1](/packages/scheb-2fa)[scheb/2fa-bundle A generic interface to implement two-factor authentication in Symfony applications 6914.0M62](/packages/scheb-2fa-bundle)[auth0/symfony Symfony SDK for Auth0 Authentication and Management APIs. 128738.1k](/packages/auth0-symfony)[nucleos/user-bundle Lightweight user management for symfony 61380.7k5](/packages/nucleos-user-bundle) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)