Couchdrop can be configured for SAML authentication via the web interface.
To configure SAML as a Service Provider, you will need the IDP details. Users must already exist in Couchdrop for SAML login and as Couchdrop supports login via SFTP and FTP, they must have a password set as well. SSO Login is only available through the web interface.
To enable SAML SSO login
Login to Couchdrop as the owner user. Navigate to Administration --> SSO
You will need to provide the following details to Couchdrop so that it can connect to your identity provider.
SAML IDP Identity Id | https://accounts.google.com/o/saml2?idpid=abc123 | The identity key for your SAML IDP provider. This can normally be easily found when configuring the IDP connection. |
SAML IDP SSO URL | https://accounts.google.com/o/saml2/idp?idpid=C02hss38i | The SSO url for your IDP |
SAML IDP Certificate | -- BEGIN KEY -- | The public key of your IDP. This is critical and used to verify that the response is coming from an approved IDP provider. |
SAML IDP Email Attribute Key | emailAddress | The attribute key for the email address returned from the IDP. |
The Couchdrop SP Details will need to be copied from Couchdrop and provided to your IDP provider.
For help configuring SSO, contact support@couchdrop.io