Skip to Content.
Sympa Menu

shibboleth-dev - Re: question about IdPResponder.java

Subject: Shibboleth Developers

List archive

Re: question about IdPResponder.java


Chronological Thread 
  • From: Walter Hoehn <>
  • To:
  • Subject: Re: question about IdPResponder.java
  • Date: Thu, 8 Jun 2006 10:13:03 -0500

My experience is that creating a custom tomcat realm is fairly straightforward. If you already have code that does radius auth, you should be able to basically paste it into a proper realm implementation class.

-Walter


On Jun 8, 2006, at 10:10 AM, David G Mills wrote:

Thank you for your replies Scott.

I feared something like this might be the case. Instead I'm trying to take
the approach of creating my own LoginModule for Tomcat, that can go via
RADIUS. This should then proceed normally with the authentication
assertion process as it's maintained within the container and within the
initial IdP process, I hope. =)

Dave.

On Thu, 8 Jun 2006, Scott Cantor wrote:

What you're describing isn't how Shibboleth works now.

And what I meant to explain there was that of course in 2.0, authentication
is no longer allowed to be solely a container function without violating new
SAML request options, and once it's inside a managed process within the IdP,
something like you're trying to do will be simple.

The external authentication case, whether local container or remote server
via some non-SAML protocol, will be the more complicated integration option.

-- Scott



---
David G Mills
School of Electronics and Computer Science
University of Southampton
+44 (0)23 8059 4490





Archive powered by MHonArc 2.6.16.

Top of Page