shibboleth-dev - Re: Tomcat and certificate validation for SSL
Subject: Shibboleth Developers
List archive
- From: Tom Scavo <>
- To: Scott Cantor <>
- Cc: ,
- Subject: Re: Tomcat and certificate validation for SSL
- Date: Tue, 14 Jun 2005 19:06:02 -0400
- Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=DyFSGaAHvIJrMNSwDK9d94gAih/H3Mwl/xoXyuzGH0bfXWOedBibbZovMNp+zbvLZf3Yqgr2VhFJjnMfs1caXwqxOLG38Cm/GX9n93riJ7GBJvo1U0wdyRkVqStkfBL1Uhbsyp15LQvmkHv5fc0FipVlcNf6o/X+UbZgqzpM6dQ=
On 6/14/05, Scott Cantor
<>
wrote:
>
> Don't other containers support Apache? I guarantee it's faster than either
> of them. Which I guess argues for your point, not mine. If you care about
> performance, you're probably not interested in this scenario anyway.
>
> So that just leaves the replay code and fitting a more complete framework
> for varying the authentication layer into the codebase, care to write it?
> ;-)
So just to make sure I understand what the options are, Shib 1.3
supports a traditional apache-tomcat configuration (except that
authentication and path validation are now split between the two) but
signed attribute queries are not supported and there are no plans to
add this feature. Correct?
> > I just think that modifying the container will raise the barrier to entry
> > for shibboleth.
Actually it will push people away from a standalone tomcat deployment,
towards the traditional apache-tomcat setup.
Tom
- Re: Tomcat and certificate validation for SSL, (continued)
- Re: Tomcat and certificate validation for SSL, Chad La Joie, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Chad La Joie, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Walter Hoehn, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
Archive powered by MHonArc 2.6.16.