SAML NYC.ID Setup - nycrecords/gpp-hyrax GitHub Wiki

Install gems for SAML

bundle install --path vendor/bundle

Generate certificate for SAML

Run the following command in the project root directory.

openssl req \                                                                 
     -newkey rsa:4096 -nodes -keyout config/certs/sp.key \
     -x509 -days 365 -out config/certs/sp.crt -subj "/C=US/ST=New York/L=New York/O=NYC Department of Records and Information Services/OU=IT/CN=<APPLICATION_URL>"

Copy contents of .env.example into .env

SAML_ISSUER=<URL FOR ISSUER METADATA>
SAML_ACS_URL=<URL FOR ACS ENDPOINT>
NYC_ID_WEB_SERVICES_URL=<URL FOR WEB SERVICES>
NYC_ID_WEB_SERVICES_USERNAME=<NYC_ID SERVICE ACCOUNT USERNAME>
NYC_ID_WEB_SERVICES_PASSWORD=<NYC_ID SERVICE ACCOUNT PASSWORD>