A professional Drupal module providing seamless integration between Drupal and Microsoft Azure Active Directory through OpenID Connect, specifically customized for Howard University's authentication requirements.
-
Install the module:
composer require howard/howard_openid_connect_windows_aad drush en howard_openid_connect_windows_aad
-
Configure Azure AD:
- Set up your Azure AD application (detailed guide)
- Configure redirect URIs and permissions
-
Configure Drupal:
- Visit
/admin/config/services/openid-connect - Select "Howard University Azure AD" as client
- Enter your Azure AD credentials
- Visit
-
Test authentication:
- Visit
/openid-connect/howard_windows_aad - Complete the SSO flow
- Visit
- Single Sign-On (SSO) with Azure Active Directory
- OAuth2/OpenID Connect compliance
- CSRF protection and secure token handling
- HTTPS enforcement for all authentication flows
- Automatic user creation from Azure AD profiles
- Profile synchronization with Azure AD data
- Group-based role mapping from Azure AD to Drupal roles
- Customizable user field mapping
- Specialized authentication flow for Howard University
- Custom group mapping logic for Howard's organizational structure
- Enhanced security measures for educational environments
- Integration with Howard's existing systems
- Seamless login experience with Azure AD credentials
- Automatic redirects to intended destinations
- Clean user interfaces with hidden local password fields
- Mobile-responsive authentication flows
- Comprehensive configuration options through Drupal admin UI
- Detailed logging for authentication events and errors
- Flexible role mapping configuration
- Easy troubleshooting with built-in diagnostics
This module extends Drupal's OpenID Connect ecosystem with:
- Plugin-based architecture for easy extension
- Event-driven processing for customization hooks
- Service-oriented design with dependency injection
- Configuration API integration for settings management
- PSR-4 compliant autoloading and namespace organization
| Document | Description |
|---|---|
| Installation Guide | Complete setup instructions with Azure AD configuration |
| API Documentation | Technical API reference and integration details |
| Developer Guide | Development setup, testing, and contribution guidelines |
| Changelog | Version history and release notes |
| Coding Standards | Code quality and style guidelines |
| Release Checklist | Quality assurance and release procedures |
- Drupal: 9.x or 10.x
- PHP: 8.1 or higher
- Database: MySQL 5.7+, PostgreSQL 10+, or MariaDB 10.3+
- Web Server: Apache 2.4+ or Nginx 1.12+
- OpenID Connect (^1.4 || ^2.0 || ^3.0)
- Azure AD tenant with configured application
- SSL/TLS certificate (required for production)
- idfive Component Library for UI components
- idfive Component Library D8 Theme for styling
# Install the module
composer require howard/howard_openid_connect_windows_aad
# Enable the module
drush en howard_openid_connect_windows_aad
# Clear cache
drush cr- Download the latest release from the repository
- Extract to
modules/contrib/howard_openid_connect_windows_aad - Enable via Drupal admin interface or Drush
For detailed installation instructions, see the Installation Guide.
-
Navigate to OpenID Connect settings:
Administration Β» Configuration Β» Web Services Β» OpenID Connect -
Select Howard University Azure AD client:
- Check "Howard University Azure AD"
- Configure client credentials from Azure AD
-
Configure role mapping:
- Map Azure AD groups to Drupal roles
- Set default roles for new users
-
Test the configuration:
- Use the built-in test functionality
- Verify user creation and role assignment
- Custom field mapping for user profiles
- Group-based access control configuration
- Logging and monitoring setup
- Performance optimization settings
See the Installation Guide for comprehensive configuration details.
This module implements enterprise-grade security measures:
- β OAuth2/OpenID Connect standard compliance
- β HTTPS enforcement for all authentication flows
- β CSRF protection using state parameters
- β Token validation and secure storage
- β Input sanitization and output encoding
- β Session security with proper handling
- β Regular security audits and updates
For detailed security information, see the Installation Guide.
- Documentation: Check the docs directory for comprehensive guides
- Issues: Report bugs and feature requests through the project repository
- Community: Join Howard University's developer community discussions
For enterprise support and custom development:
- Contact Howard University IT Services
- Professional consulting available through approved vendors
We welcome contributions! Please see our Developer Guide for:
- Development environment setup
- Coding standards and guidelines
- Testing requirements
- Submission process
- Fork the repository
- Create a feature branch
- Make your changes following our coding standards
- Add/update tests as needed
- Update documentation
- Submit a pull request
# Run unit tests
./vendor/bin/phpunit
# Check coding standards
./vendor/bin/phpcs --standard=Drupal,DrupalPractice src/
# Static analysis
./vendor/bin/phpstan analyse src/See the Developer Guide for comprehensive testing information.
See CHANGELOG.md for detailed version history and release notes.
This project is licensed under the GNU General Public License v2.0 or later - see the LICENSE file for details.
- Howard University IT Services - Primary development and maintenance
- idfive - Component library and theming support
- OpenID Connect Microsoft Azure Active Directory client - Original foundation module
- OpenID Connect - Core OpenID Connect functionality
- Drupal community for the robust OpenID Connect ecosystem
- Microsoft for comprehensive Azure AD documentation
- All contributors and beta testers
Howard University | Information Technology Services
Empowering education through innovative technology solutions