Shibboleth Developers

[<>]

The authentication sevlet supports multiple authentication modes and 
shibboleth is one of them.
For example:
http://find.gale.com/auth/authentication.do?usergroupname=shib

In this case based on the authentication profile setup for usergroupname the 
servlet will decide how to authenticate him. shibboleth may be one of the 
mode. So by protecting the servlet , it will prompt shibboleth for every user 
which we don't need.

Johnson

-----Original Message-----
From: Scott Cantor 
[mailto:]
Sent: Wednesday, May 17, 2006 5:27 PM
To: 

Cc: Steinberg, Dan (Gale); Rengarajan (Kumar), Selva (Gale)
Subject: RE: Browser/POST issue


> While registering with inqueue, the Assertion consumer URL  
> by default seems to be made by appending 
> /shibboleth.sso/SAML/POST, is it possible to register a 
> custom URL like http://idp.example.org/auth/authetication.do. 
> This will help us integrate with existing authentication module.

It's possible, but I can't imagine the circumstance where this would make
sense to do. Nothing you described would explain that. The goal is to let
the software handle it, and then protect a resource. The resource can be one
page, your authentication servlet.

If that's not sufficient, let me know and I can explain how to try it.

-- Scott