Portal Single Sign On
One you configure your deployment to enable the Deployed Portal, the next thing you may wish to accomplish is to use your Single-Sign-On to authenticate into the Deployed developer interface. Our portal interfaces currently support SAML authentication into our deployed portal interfaces for both the Developer portal seen @ https://portal.form.io as well as our Form Manager portal application.
We will cover setting up Single Sign On for the Deployed portal first.
Developer Portal SSO
To get started, you will first need to become familiar with how the SAML integration works with Form.io. You can read this documentation within the SAML Single Sign On section. Once you are familiar with this, you will want to setup SAML integration within the Portal Base project which is created when you deploy a new portal with the PRIMARY=true environment variable. You will see this project when you log into the deployed portal when you authenticate using the ADMIN_EMAIL and ADMIN_PASS that you used when creating the deployed portal. This will looke like the following.
When you click on this project, you will then want to configure the SAML configuration with the settings that you setup by walking through the SAML documentation above.
Now that you have setup your main portal project with the SAML configuration, you will now need to provide a single Environment variable to your deployment to enable the SSO portal. This environment is as follows.
For now, the only supported type is “saml” which should be the value of this environment variable. Once you have set this variable, then logout, you will then notice that the portal authenticates with the SAML SSO authentication.
The next item that can be configured for SSO is the Form Manager application.
Form Manager SSO
To enable the Form Manager with SAML SSO authentication, you will need to first navigate to your project, and just like you did for the Portal Base project above, configure this project with some SAML configuration. Important: Make sure that you configure a separate SSO application within your SAML provider to use the correct project urls instead of using the same SAML configuration provided in the previous step.
After you do that, you will now need to provide the SSO configuration within your projects Public Configuration section.
Once this is done, you can now go to the following URL to see the Form Manager application.
Or, if you are using subdirectory project path method, it may look like the following.
Once you do this, you will see that it will trigger the SAML SSO for the form manager application.