Shibboleth Developers

[Walter Hoehn <>]

My experience is that creating a custom tomcat realm is fairly  
straightforward.  If you already have code that does radius auth, you  
should be able to basically paste it into a proper realm  
implementation class.

-Walter


On Jun 8, 2006, at 10:10 AM, David G Mills wrote:

> Thank you for your replies Scott.
>
> I feared something like this might be the case. Instead I'm trying  
> to take
> the approach of creating my own LoginModule for Tomcat, that can go  
> via
> RADIUS. This should then proceed normally with the authentication
> assertion process as it's maintained within the container and  
> within the
> initial IdP process, I hope. =)
>
> Dave.
>
> On Thu, 8 Jun 2006, Scott Cantor wrote:
>
> > > What you're describing isn't how Shibboleth works now.
> >
> > And what I meant to explain there was that of course in 2.0,  
> > authentication
> > is no longer allowed to be solely a container function without  
> > violating new
> > SAML request options, and once it's inside a managed process  
> > within the IdP,
> > something like you're trying to do will be simple.
> >
> > The external authentication case, whether local container or  
> > remote server
> > via some non-SAML protocol, will be the more complicated  
> > integration option.
> >
> > -- Scott
>
> ---
> David G Mills
> School of Electronics and Computer Science
> University of Southampton
> +44 (0)23 8059 4490