shibboleth

Apache Config - Exclude Location from Authentication

微笑、不失礼 提交于 2019-12-04 03:05:30
问题 I have a web application that is being protected by a Shibboleth authentication module. My current config is as below <Location /MyApp> AuthType shibboleth ShibUseHeaders On ShibRequestSetting requireSession 1 require shibboleth </Location> The shibboleth is an authentication module that provides SSO capability and the current flow directs the user to an Identity Provider for the user to enter the login credentials. I want to be able to open up a specific URL so that the URL gets bypassed by

Is it possible to connect Shibboleth idp from localhost?

蹲街弑〆低调 提交于 2019-12-04 01:50:58
问题 I installed Shibboleth service provider on localhost. I want to connect to shibboleth idp. Error Message: No peer endpoint available to which to send SAML response This is because I connect to IDP(idp.shibtest.org) from localhost? 回答1: testshib.org is good way to test shibboleth. You cannot use localhost as SP to connect to remote IDp , that iDp won't find any SP to return to because localhost means it's own system so IDp would go in it's local system and find your given SP's entity ID. It

R: use rvest (or httr) to log in to a site requiring cookies

喜你入骨 提交于 2019-12-04 01:49:14
问题 I'm trying to automate the shibboleth-based login process for the UK Data Service in R. One can sign up for an account to login here. A previous attempt to automate this process is found in this question, automating the login to the uk data service website in R with RCurl or httr. I thought the excellent answers to this question, how to authenticate a shibboleth multi-hostname website with httr in R, were going to get me there, but I've run into a wall. And, yes, RSelenium provides an

Deployment on Tomcat: Constraint violation when resolving method “org.slf4j.impl.StaticLoggerBinder.getLoggerFactory()Lorg/slf4j/ILoggerFactory;”

瘦欲@ 提交于 2019-12-03 16:16:59
I'm deploying Shibboleth IdP 3.1.1 on Tomcat 8.0.22, but I receive this error: SEVERE [http-nio-8080-exec-13] org.apache.catalina.core.StandardContext.listenerStart Exception sending context initialized event to listener instance of class org.springframework.web.context.ContextLoaderListener org.springframework.beans.BeanInstantiationException: Failed to instantiate [net.shibboleth.ext.spring.context.DeferPlaceholderFileSystemXmlWebApplicationContext]: Constructor threw exception; nested exception is java.lang.LinkageError: loader constraint violation: when resolving method "org.slf4j.impl

In order to implement SAML do I need Shibboleth SP installed on my host?

杀马特。学长 韩版系。学妹 提交于 2019-12-03 04:38:57
问题 I got a couple of SAML implementation questions to clear up my confusion ... I need to implement SSO in a java web app. In order to do so, do I need Shibboleth SP installed on my host like so, or can I provide the SP functionality via OpenSAML? I am assuming that shibboleth is doing the same as OpenSAML but just on a webserver level, whereas OpenSAML will do it on the software side. Is that assumption correct? EDIT: So shibboleth (according to Scott Cantor) is build with OpenSAML ... does my

Best practices for login pages?

て烟熏妆下的殇ゞ 提交于 2019-12-03 04:22:35
问题 I am working on a single sign-on login page using Shibboleth that will be used for a variety of web applications. Obviously we would like to make this page as secure and usable as possible while limiting the effects of phishing scams. What are the best practices to keep in mind when designing a login page? Some questions that have come up around this issue: Is it important for the login page to always look the same on every display? Conversely, would it be beneficial for the login page to

Shibboleth SP - Reading assertion attributes from Java

好久不见. 提交于 2019-12-02 19:40:57
问题 I understand that configured attributes will be stored as environment variables by default and will be accessible like request.getAttribute("Shib-Identity-Provider") I tried that and after some googling I understood that to access them in Java through AJP. I need to prefix this <ApplicationDefaults id="default" policyId="default" entityID="https://idp.example.org" REMOTE_USER="eppn persistent-id targeted-id" signing="false" encryption="false" attributePrefix="AJP_"> I did that but I still

can I do test shibboleth IdP and SP on localhost environment?

♀尐吖头ヾ 提交于 2019-12-02 11:33:05
can I do test shibboleth IdP and SP on localhost environment? I have just one PC(Win7) Akshay Yes you sure can. Download and install SP and idP in that machine, configure metadata for both to communicate to localhost or for better ease use two domains for SP and idP, C:\Windows\System32\drivers\etc here add two domains localhost-sp and localhost-idp to the hosts file. So you have now two differet domains for sp and idp. 来源: https://stackoverflow.com/questions/21273062/can-i-do-test-shibboleth-idp-and-sp-on-localhost-environment

Shibboleth SP - Reading assertion attributes from Java

為{幸葍}努か 提交于 2019-12-02 09:44:15
I understand that configured attributes will be stored as environment variables by default and will be accessible like request.getAttribute("Shib-Identity-Provider") I tried that and after some googling I understood that to access them in Java through AJP. I need to prefix this <ApplicationDefaults id="default" policyId="default" entityID="https://idp.example.org" REMOTE_USER="eppn persistent-id targeted-id" signing="false" encryption="false" attributePrefix="AJP_"> I did that but I still keep getting null in my Java application Shib-Identity-Provider - null Shib-Session-ID - null Shib

SAML client for Android?

微笑、不失礼 提交于 2019-12-02 02:11:04
问题 I'm working on a project which needs to parse some data from some protected web pages. In order to gain the access those pages, I have to overcome a SAML authetication form (Shibboleth). Is there someone who was able to implement this standard in Android (Java)? I already read this thread: SAML Client implementation for Android? but it doesn't give me a good solution. In fact, I need to get the data of some protected web pages in order to parse it, not to let the user to see the content of
订阅 shibboleth