PHPackages visol/shibboleth-auth - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. visol/shibboleth-auth ActiveTypo3-cms-extension[Authentication & Authorization](/categories/authentication) visol/shibboleth-auth ===================== Shibboleth Authentication for TYPO3 CMS 7.0.1(7mo ago)321.4k↓41.3%9[2 issues](https://github.com/visol/shibboleth_auth/issues)[3 PRs](https://github.com/visol/shibboleth_auth/pulls)GPL-2.0-or-laterPHP Since Feb 7Pushed 7mo ago4 watchersCompare [ Source](https://github.com/visol/shibboleth_auth)[ Packagist](https://packagist.org/packages/visol/shibboleth-auth)[ Docs](https://github.com/visol/shibboleth_auth)[ RSS](/packages/visol-shibboleth-auth/feed)WikiDiscussions main Synced 1mo ago READMEChangelog (10)Dependencies (1)Versions (24)Used By (0) Shibboleth Authentication for TYPO3 CMS ======================================= [](#shibboleth-authentication-for-typo3-cms) EXT:shibboleth\_auth Fork of the TYPO3 extension shibboleth\_auth to fix performance issues and shipping with an Extbase-based Login plugin. This extension enables the single sign-on based on Shibboleth for frontend and backend authentication. Compatibility and Maintenance ----------------------------- [](#compatibility-and-maintenance) This package is currently maintained for the following versions: TYPO3 VersionPackage VersionBranchMaintainedTYPO3 13.4.x7.x (in development)mainYesTYPO3 11.5.x6.xv11NoTYPO3 10.4.x5.xv5NoTYPO3 8.x4.xv4NoPrerequisites ------------- [](#prerequisites) The extension relies on values of the Shibboleth session being available within the `$_SERVER` array. This can be achieved with either Apache or nginx, however it is easier to achieve with Apache. Apache's Shibboleth module has to be installed on the web server before you can use this extension. The following .htaccess rules must be added to the .htaccess file in document root: ``` AuthType shibboleth Require shibboleth ``` Furthermore, a rewrite is necessary to make the Shibboleth endpoints available: ``` RewriteRule ^(Shibhandler.*)/ - [L] RewriteRule ^(Shibboleth.sso)/ - [L] ``` It must be the first RewriteRule in htaccess. Installation ------------ [](#installation) Install this extension via `composer require visol/shibboleth-auth` and activate the extension. After installing the extension, you have to activate the basic features in the extension's settings to be found in Admin Tools -> Settings -> Extension Configuration. By default, the extension will not do anything. Shibboleth authentication can be activated for frontend and backend separately. It is highly recommended to keep a browser window with an authenticated admin user open before activating and testing the backend login (see below). Otherwise you could lock yourself out, if your Shibboleth configuration is incorrect. Using the Frontend login ------------------------ [](#using-the-frontend-login) For frontend login you need a TYPO3 folder to store the users. To activate the frontend authentication, a plugin is available to the editors. For the plugin to work, the static TypoScript needs to be included. You can use your own templates by just overriding the paths via TypoScript constants: ``` plugin.tx_shibbolethauth { view { templateRootPaths.10 = EXT:shibboleth_auth/Resources/Private/Templates/ partialRootPaths.10 = EXT:shibboleth_auth/Resources/Private/Partials/ layoutRootPaths.10 = EXT:shibboleth_auth/Resources/Private/Layouts/ } } ``` If no frontend user is logged in, a login link is displayed. Just like other logins in TYPO3, the plugin itself provides the login, not the protection. If you want to restrict access to the content of your login page, you have to assign the related group in the access settings. Do not assign any restrictions to the Shibboleth plugin itself! Otherwise no login redirects will be made. In the plugin, you can also configure the redirect page after successful authentication. If a parameter `redirect_url` is passed in the URL to the login page, this parameter takes precedence over the FlexForm setting and this URL is used for a redirect on successful authentication. Using the Backend login ----------------------- [](#using-the-backend-login) If the usage of Shibboleth for the backend login is enabled in the extension configuration, you will be presented with an additional login provider in the TYPO3 backend login form. The `remoteUser` setting determines which backend user is looked up during the authentication process. By default, this is set to `REMOTE_USER`. This means that a user with a username identical to the value of the `REMOTE_USER` server variable must exist. You can customize the login screen by copying `Resources/Private/Templates/BackendLogin/ShibbolethLogin.html` to another location and adjusting its contents. You can then set the configuration `typo3LoginTemplate` to this path using the `EXT:` or `FILE:` prefix. Support ------- [](#support) If you need support setting up your TYPO3 instance with Shibboleth, you can contact us: visol digitale Dienstleistungen GmbH, [www.visol.ch](http://www.visol.ch) ### Health Score 47 — FairBetter than 94% of packages Maintenance49 Moderate activity, may be stable Popularity33 Limited adoption so far Community18 Small or concentrated contributor base Maturity73 Established project with proven stability Bus Factor1 Top contributor holds 71.2% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Release Activity Cadence Every ~164 days Recently: every ~246 days Total 18 Last Release 230d ago Major Versions 4.2.0 → 5.0.02021-04-06 4.3.0 → 5.1.02022-07-08 5.1.0 → 6.0.02022-12-14 5.1.1 → 6.1.12023-01-20 6.2.1 → 7.0.02025-08-07 ### Community Maintainers ![](https://www.gravatar.com/avatar/d6e1686bc798a88033f481f209a4f060235147ac7dca4c3391f2d171e30fdd4a?d=identicon)[visol](/maintainers/visol) --- Top Contributors [![lorenzulrich](https://avatars.githubusercontent.com/u/1816023?v=4)](https://github.com/lorenzulrich "lorenzulrich (47 commits)")[![fabarea](https://avatars.githubusercontent.com/u/620730?v=4)](https://github.com/fabarea "fabarea (12 commits)")[![mindpilot](https://avatars.githubusercontent.com/u/3437392?v=4)](https://github.com/mindpilot "mindpilot (3 commits)")[![jrenggli](https://avatars.githubusercontent.com/u/743094?v=4)](https://github.com/jrenggli "jrenggli (2 commits)")[![fanat98](https://avatars.githubusercontent.com/u/7521886?v=4)](https://github.com/fanat98 "fanat98 (1 commits)")[![ohader](https://avatars.githubusercontent.com/u/402145?v=4)](https://github.com/ohader "ohader (1 commits)") ### Embed Badge ![Health badge](/badges/visol-shibboleth-auth/health.svg) ``` [![Health](https://phpackages.com/badges/visol-shibboleth-auth/health.svg)](https://phpackages.com/packages/visol-shibboleth-auth) ``` ### Alternatives [in2code/femanager Modern TYPO3 Frontend User Registration. 49745.4k6](/packages/in2code-femanager)[typo3/cms-felogin TYPO3 CMS Frontend Login - A template-based plugin to log in website users in the TYPO3 frontend. 116.7M99](/packages/typo3-cms-felogin)[causal/ig_ldap_sso_auth This extension provides LDAP support for TYPO3 by delegating the authentication of frontend and/or backend users to the centrally-managed directory of your organization. It fully supports OpenLDAP and Active Directory and is capable of connecting securely to the authentication server using either TLS or SSL (ldaps://). In case of use in an intranet environment, this extension is a perfect match since it natively brings Single Sign-On (SSO) capability to TYPO3 without any complex configuration. 33377.4k](/packages/causal-ig-ldap-sso-auth)[friendsoftypo3/openid OpenID authentication for TYPO3 CMS 1396.0k](/packages/friendsoftypo3-openid)[b13/permission-sets Allows for deployable and re-usable permission sets for backend users 2964.0k3](/packages/b13-permission-sets)[mfc/oauth2 Generic OAuth2 authentication and authorization for TYPO3 CMS 11290.6k2](/packages/mfc-oauth2) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)