shibboleth-dev - SP and Authentication Contexts
Subject: Shibboleth Developers
List archive
- From: Lukas Haemmerle <>
- To:
- Subject: SP and Authentication Contexts
- Date: Wed, 03 Oct 2007 14:06:17 +0200
- Organization: SWITCH - Serving Swiss Universities
I'm testing the Service Provider 2.0 Beta and was wondering if and how
one can use authentication context requirements (e.g. this location can
only be accessed by somebody with
AuthenticationMethod=urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport).
Assuming that this can be done somehow in the RequestMap and/or with a
special Apache directive, I searched the files a bit found nothing but
the directives:
ShibConfig
ShibCatalogs
ShibSchemaDir
ShibURLScheme
ShibRequestSetting
ShibDisable
ShibApplicationId
ShibBasicHijack
ShibRequireSession
ShibRequireSessionWith
ShibExportAssertion
ShibRedirectToSSL
ShibRequireAll
AuthzShibAuthoritative
ShibUseEnvironment
ShibUseHeaders
None of them seems to make sense to use with authentication contexts. (I
wonder though what the ShibBasicHijack is used for ;) )
Lukas
--
SWITCH
Serving Swiss Universities
--------------------------
Lukas Haemmerle, Software Engineer, Security
Werdstrasse 2, P.O. Box, 8021 Zurich, Switzerland
phone +41 44 268 15 64, fax +41 44 268 15 68
,
http://www.switch.ch
- SP and Authentication Contexts, Lukas Haemmerle, 10/03/2007
- RE: SP and Authentication Contexts, Scott Cantor, 10/03/2007
- Re: SP and Authentication Contexts, Lukas Haemmerle, 10/04/2007
- RE: SP and Authentication Contexts, Scott Cantor, 10/04/2007
- RE: SP and Authentication Contexts, Scott Cantor, 10/04/2007
- Re: SP and Authentication Contexts, Lukas Haemmerle, 10/04/2007
- RE: SP and Authentication Contexts, Scott Cantor, 10/03/2007
Archive powered by MHonArc 2.6.16.