Skip to main content

Connecting to an Authentication Server

Setup

Enable remote authentication

By default, remote authentication is disabled. To enable it you will need to edit the config file config/authentication/auth_config.yml

The auth_config.yml has the format below.

development:
  omniauth_providers: [developer]
  # developer_text:
  # developer_icon:
  # saml_text:
  # saml_icon:
  # azure_activedirectory_v2_text:
  # azure_activedirectory_v2_icon:

test:
  omniauth_providers: [developer, saml, azure_activedirectory_v2]
  # developer_text:
  # developer_icon:
  # saml_text:
  # saml_icon:
  # azure_activedirectory_v2_text:
  # azure_activedirectory_v2_icon:

# production:
  # omniauth_providers:
  # saml_text:
  # saml_icon:
  # azure_activedirectory_v2_text:
  # azure_activedirectory_v2_icon:

For your production environment, uncomment and edit the relevant production lines.

For Azure

production:
  omniauth_providers: [azure_activedirectory_v2]

For SAML

production:
  omniauth_providers: [saml]

Credentials

You will need to setup the authentication server credentials in the IRIDA Next secret credentials file.

You can edit this file with the following command.

EDITOR="vim --nofork" bin/rails credentials:edit

Azure Active Directory V2

For Azure, you will need the following lines

azure:
  client_id: YOUR_AZURE_CLIENT_ID
  client_secret: YOUR_AZURE_CLIENT_SECRET
  tenant_id: YOUR_AZURE_TENANT_ID

SAML

For SAML, you will need the following lines

saml:
  idp_sso_service_url: YOUR_SAML_IDP_SSO_SERVICE_URL
  sp_entity_id: YOUR_SAML_SP_ENTITY_ID
  idp_cert: YOUR_SAML_IDP_CERT

Further customization

You can change the display name and icon to match your organization.

In the config/authentication/auth_config.yml file, edit _text and _icon fields appropriate for your Azure or SAML setup.

Put your organizations name in the _text field.

Place a .svg icon file in the config/authentication/icons/ directory and add the filename to the _icon field.

Example:

production:
  omniauth_providers: [azure_activedirectory_v2]
  # saml_text:
  # saml_icon:
  azure_activedirectory_v2_text: Tyrell Corporation
  azure_activedirectory_v2_icon: tyrell.svg