PHPackages ubc-web-services/ubc\_saml\_auth10 - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. ubc-web-services/ubc\_saml\_auth10 ActiveDrupal-module[Authentication & Authorization](/categories/authentication) ubc-web-services/ubc\_saml\_auth10 ================================== UBC SAML Auth configuration for protected paths 1.2(1y ago)01.8kPHP Since Aug 30Pushed 1y ago2 watchersCompare [ Source](https://github.com/ubc-web-services/ubc_saml_auth10)[ Packagist](https://packagist.org/packages/ubc-web-services/ubc_saml_auth10)[ RSS](/packages/ubc-web-services-ubc-saml-auth10/feed)WikiDiscussions master Synced 1mo ago READMEChangelogDependencies (1)Versions (3)Used By (0) ubc\_saml\_auth10 ================= [](#ubc_saml_auth10) For setting protected paths, in Drupal ^9.2 || ^10, PHP 8 Protecting Private File Media ----------------------------- [](#protecting-private-file-media) This module can be used in conjunction with other modules to provide protections for private file media types. 1. Download [r4032login module](https://www.drupal.org/project/r4032login) 2. Download [private file download permission module](https://www.drupal.org/project/private_files_download_permission) 3. Navigate to `/admin/people/permissions` and find the setting for `Bypass Private files download permission`. Check the "Authenticated User" box and hit Save. 4. Navigate to `/admin/config/system/r4032login/settings` and select `Allow redirect for listed pages`, add in the private file system path the site uses, appended with a `*` wildcard. For example: `/system/files/media-uploads/files/*` and hit Save. 5. Navigate to the "Anonymous Behaviour" Tab and change the redirect path to `/saml_login` and hit Save. This should ensure that private files are not accessible by unauthenticated users, if a private file is accessed via a direct link this will be blocked by the private file download permission module which will cause a 403, the 4032login module will cause this 403 to redirect to a CWL login. Upon successful CWL login the user will be redirected back to the original file they were attempting to access. Upon unsuccessful login the access will be denied. This provides extra protection for private files and allows for the protection of private files as a media type rather than needing to attach them to a node and protect that node. For reference see ### Health Score 28 — LowBetter than 54% of packages Maintenance31 Infrequent updates — may be unmaintained Popularity17 Limited adoption so far Community12 Small or concentrated contributor base Maturity44 Maturing project, gaining track record Bus Factor1 Top contributor holds 50% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~280 days Total 2 Last Release 705d ago ### Community Maintainers ![](https://www.gravatar.com/avatar/bb2057c95b72281166d1223f90909ff8440a29a5ee5f450cf0d71194563dda94?d=identicon)[occupant](/maintainers/occupant) ![](https://www.gravatar.com/avatar/b6c1e9ad0b426341d05e305d124a5e013c722962ce6ce98c036318e6f1e8dc76?d=identicon)[gocaps](/maintainers/gocaps) --- Top Contributors [![gocaps](https://avatars.githubusercontent.com/u/3074378?v=4)](https://github.com/gocaps "gocaps (5 commits)")[![christopherdegroot](https://avatars.githubusercontent.com/u/47255795?v=4)](https://github.com/christopherdegroot "christopherdegroot (3 commits)")[![occupant](https://avatars.githubusercontent.com/u/130125?v=4)](https://github.com/occupant "occupant (2 commits)") ### Embed Badge ![Health badge](/badges/ubc-web-services-ubc-saml-auth10/health.svg) ``` [![Health](https://phpackages.com/badges/ubc-web-services-ubc-saml-auth10/health.svg)](https://phpackages.com/packages/ubc-web-services-ubc-saml-auth10) ``` ### Alternatives [namshi/jose JSON Object Signing and Encryption library for PHP. 1.8k99.6M101](/packages/namshi-jose)[league/oauth1-client OAuth 1.0 Client Library 99698.8M106](/packages/league-oauth1-client)[gesdinet/jwt-refresh-token-bundle Implements a refresh token system over Json Web Tokens in Symfony 70516.4M35](/packages/gesdinet-jwt-refresh-token-bundle)[league/oauth2-google Google OAuth 2.0 Client Provider for The PHP League OAuth2-Client 41721.2M118](/packages/league-oauth2-google)[illuminate/auth The Illuminate Auth package. 9327.3M1.0k](/packages/illuminate-auth)[beatswitch/lock A flexible, driver based Acl package for PHP 5.4+ 870304.7k2](/packages/beatswitch-lock) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)