Presentation is loading. Please wait.

Presentation is loading. Please wait.

Shibboleth SP Update Spring 2012 Scott Cantor

Published byBuddy Hutchinson Modified over 6 years ago

Similar presentations

Presentation on theme: "Shibboleth SP Update Spring 2012 Scott Cantor"— Presentation transcript:

1 Shibboleth SP Update Spring 2012 Scott Cantor cantor.2@osu.edu

2 https://wiki.shibboleth.net/confluence/display/DEV/SPRoadmap
SP V2.5 See bottom of page for list of bug fixes and feature additions Alpha RPM releases available from Targeting a Summer release Significant note: Solaris build will be “hard” due to limitations of platform/compiler; gcc may become a better choice

3 Packaging Run as non-root (done)
Version-independent web content (done) Protect conf.d/shib.conf Apache settings (done) Init script support for /etc/sysconfig/shibd (done) Working towards Windows upgrade support (expected)

4 https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPLogging
Audit Logging Backward compatible if not specially configured Deployer-selected fields, format, delimiters, etc. Open to input on new defaults

5 “Boarding” / Error Handling
Leverage information about attributes required by a service Validate requirements at login time before transfer of control back to resources Handle missing attributes with customized error responses

6 “Boarding” / Error Handling
New plugins that can extract useful info from metadata (errorURL, contacts, descriptions, policy links) “Metadata AttributeExtractor” Post-login validation Generic “sessionHook” feature “Attribute Checker” endpoint <Handler type="AttributeChecker" Location="/AttrChecker" attributes=”eppn displayName” template="attrChecker.html" flushSession="true"/>

7 Attribute Munging Transform AttributeResolver
<AttributeResolver type="Transform" source="displayName"> <Regex match="^(.+) (.+)$" dest="givenName">$1</Regex> <Regex match="^(.+) (.+)$" dest="sn">$2</Regex> </AttributeResolver> Template AttributeResolver <AttributeResolver type="Template" source="givenName sn" dest="displayName"> <Template>$givenName $sn</Template> </AttributeResolver>

8 Back Door Integration OpenID Connect not supported yet. Since it's so easy, you can do it. Two mechanisms: Generate a SAML ArtifactResponse message in a file; generate a matching artifact for client to submit using SAML artifact binding. Generate SAML assertion and submit to from server-side script, get back session cookie to give to client

Download ppt "Shibboleth SP Update Spring 2012 Scott Cantor"

Similar presentations

Dispatcher Conditional Expression Static Request Filter Attribute Filter Portal 1 1 2 2 4 4 3,6 5 5 7 7 8 8 9 9 1010 1010 DNS Hello User Sample (Gateway)

Dispatcher Conditional Expression Static Request Filter Attribute Filter Portal , DNS Hello User Sample (Gateway)
Kashif Jalal CA-240 (072) Web Development Using ASP.NET CA – 240 Kashif Jalal Welcome to week – 2 of…

Kashif Jalal CA-240 (072) Web Development Using ASP.NET CA – 240 Kashif Jalal Welcome to week – 2 of…
 SAP AG CSU Chico Working with IMG Copyright 1996, 1997, 1998- James R. Mensching, Gail Corbitt Contents of this file are for the exclusive use of the.

 SAP AG CSU Chico Working with IMG Copyright 1996, 1997, James R. Mensching, Gail Corbitt Contents of this file are for the exclusive use of the.
CS 290C: Formal Models for Web Software Lecture 1: Introduction Instructor: Tevfik Bultan.

CS 290C: Formal Models for Web Software Lecture 1: Introduction Instructor: Tevfik Bultan.
CUWebAuth Technical Presentation Pete Bosanko Identity Management Team.

CUWebAuth Technical Presentation Pete Bosanko Identity Management Team.
Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.

Shibboleth 2.0 : An Overview for Developers Scott Cantor The Ohio State University / Internet2 Scott Cantor The Ohio.
Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.

Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.
Form Handling, Validation and Functions. Form Handling Forms are a graphical user interfaces (GUIs) that enables the interaction between users and servers.

Form Handling, Validation and Functions. Form Handling Forms are a graphical user interfaces (GUIs) that enables the interaction between users and servers.
Introduction to SharePoint Development with VS2010 Paul Yuknewicz Lead Program Manager

Introduction to SharePoint Development with VS2010 Paul Yuknewicz Lead Program Manager
Shibboleth: New Functionality in Version 1 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.

Shibboleth: New Functionality in Version 1 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.

Shibboleth-intro-dec051 Shibboleth A Technical Overview Tom Scavo NCSA.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Linux Operations and Administration

Linux Operations and Administration
Shibboleth Possible Features – Version 2 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.

Shibboleth Possible Features – Version 2 Steve Carmody July 9, 2003 Steve Carmody July 9, 2003.
Expert Training Presentation September 2013 Rev 3 Instant Queue Manager Enterprise Click to Chat.

Expert Training Presentation September 2013 Rev 3 Instant Queue Manager Enterprise Click to Chat.
What’s new in Stack 3.2 Michael Youngstrom. Disclaimer This IS a presentation – So sit back and relax Please ask questions.

What’s new in Stack 3.2 Michael Youngstrom. Disclaimer This IS a presentation – So sit back and relax Please ask questions.
1 Documentum 6 Reviews from Early Adopters Technology Services Group, Inc. October 10, 2007.

1 Documentum 6 Reviews from Early Adopters Technology Services Group, Inc. October 10, 2007.
Instant Messaging for the Workplace A pure collaborative communication tool that does not distract users from their normal activities.

Instant Messaging for the Workplace A pure collaborative communication tool that does not distract users from their normal activities.
SAML Right Here, Right Now Hal Lockhart September 25, 2012.

SAML Right Here, Right Now Hal Lockhart September 25, 2012.
Instant Messaging for the Workplace A pure collaborative communication tool that does not distract users from their normal activities.

Instant Messaging for the Workplace A pure collaborative communication tool that does not distract users from their normal activities.

Similar presentations

Ads by Google