Enabling single sign-on

To enable single sign-on (SSO), follow these steps:

Locate the SSO toggle switch at the bottom of the publish page.
Switch the toggle to enable SSO for the game.

Once SSO is enabled, you will have access to the following details:

Service Provider Details

Service provider entity ID: This is the unique identifier for your game as a service provider.
Assertion consumer service (ACS) URL: The URL where the identity provider (IdP) sends SAML assertions.
Single logout service (SLS) URL: The URL used to manage single logout requests from the IdP.

These details are necessary for configuring your identity provider (IdP) to work with Drimify.

Important notes for SSO configuration

For SSO to work correctly, please ensure the following:

SSO Provider configuration
Make sure your SSO provider (IdP) is correctly configured in your SSO settings on Drimify. This includes entering the correct entity ID, SSO service URL, logout service URL, and X509 certificates as detailed in the SSO configuration guide.

Direct link testing
SSO functionality can only be tested using the direct link to your game. SSO will not work in preview mode. Ensure you use the app’s direct link to perform your tests.

Premium plan requirement
Verify that the premium SSO option is included in your current plan. SSO features are only available to users with the premium SSO option enabled.

Step-by-Step Instructions

Enable SSO: Toggle the switch to enable SSO in the publish section of your app.
Retrieve details: Copy the service provider entity ID, ACS URL, and SLS URL.
Configure IdP: Use these details to configure your identity provider according to the SSO configuration guide.
Test SSO: Use the direct link to your game to test the SSO’s functionality.

Required information from identity provider (IdP) (if your app requires a configuration different from the main SSO configuration currently set up).

Before starting the configuration, you will need the following details from your IdP:

* Identity provider entity ID (Issuer URL)
* Single sign-on service URL
* Single logout service URL
* X509 Certificate
* Encryption X509 certificate (optional)

Step-by-step configuration guide

Step 1: Enter identity provider details

Identity Provider Entity ID (Issuer URL)

Description: The Entity ID (also known as the Issuer URL) is a unique identifier for your IdP. It is usually a URL.
Example: https://idp.example.com/

Single Sign-On Service URL
Description: The Single Sign-On Service URL is the endpoint where the authentication request is sent. This URL is provided by your IdP.
Example: https://idp.example.com/sso/saml

Single Logout Service URL
Description: The Single Logout Service URL is the endpoint used to log out from the IdP.
Example: https://idp.example.com/slo/saml

X509 Certificate
Description: The X509 Certificate is used to verify the identity of the IdP and secure the communication between your platform and the IdP.
Example: A certificate text beginning with -----BEGIN CERTIFICATE----- and ending with -----END CERTIFICATE-----.

Encryption X509 Certificate (Optional)
Description: This certificate is used for encrypting the SAML assertions. It's optional and depends on your security requirements.
Example: A certificate text beginning with -----BEGIN CERTIFICATE----- and ending with -----END CERTIFICATE-----.

Step 2: Save and test configuration

After entering all the required information, click on the Save button to apply the settings.

Important: Testing the SSO configuration can only be done using the direct link to your application. The SSO functionality will not work in preview mode.

Ensure that you have set up the SSO game detail within your SSO platform to accept calls from Drimify. These settings can be found in the game publish section at the bottom of the page.

Test the configuration by initiating a login through your IdP using the direct application link to ensure everything is set up correctly.

Troubleshooting tips

Incorrect entity ID or URLs: Verify that you have copied the correct URLs and Entity ID from your IdP’s configuration.
Certificate issues: Ensure that the certificates are in the correct format and have not expired.
SSO Platform configuration: Double-check that you have configured the SSO game detail within your SSO platform to accept calls from Drimify.
The game loads without the SSO enabled: Make sure you have enabled the SSO within your game configuration and that your plan includes this Premium option.
Contact support: If you encounter issues, contact our support team.

Updated on: 30/12/2024