Shibboleth Developers

[Scott Cantor <>]

I just checked in a new shibboleth.xsd schema with elements to define an
OriginSites registry document that can be signed and
distributed/downloaded from I2 and loaded into the SHIRE and possibly
the WAYF.

A sample containing just OSU is below:

<OriginSites>
        <OriginSite Name"osu.edu">
                <HandleService Name="hs.osu.edu"/>
                <Domain>*.osu.edu</Domain>
                <Domain>hangonsloopy.com</Domain>
                <Alias>The Ohio State University</Alias>
                <Alias>Buckeyes</Alias>
        </OriginSite>
        <ds:Signature>
        .....signed by Internet2
        </ds:Signature>
</OriginSites>

Each site includes the "canonical" name, the handle service name
(optionally can include a KeyInfo inside that element for a key or
certificate), any additional domain regexps to allow attributes in
(osu.edu is implied), and aliases for the WAYF. I included xml:lang
support on the aliases to permit i18n of names for our non-English
friends.

The enclosing element includes a signature element at the bottom to sign
the list.

Pending any comments or suggestions, I'll code the alpha 2 SHIRE to use
this schema and we can distribute the list of sites using it.

-- Scott

------------------------------------------------------mace-shib-design-+
For list utilities, archives, subscribe, unsubscribe, etc. please visit the
ListProc web interface at 

    http://archives.internet2.edu/

------------------------------------------------------mace-shib-design--