shibboleth-dev - RE: Apache mod & POST filtering
Subject: Shibboleth Developers
List archive
- From: "Smith, Matt" <>
- To: <>
- Subject: RE: Apache mod & POST filtering
- Date: Thu, 24 Jan 2008 15:34:15 -0500
Thank you Scott - Not having implemented Shib (yet), I was under the
(seemingly mistaken) impression that POST'd content to a <Location>
containing "AuthType Shibboleth" would first be checked by mod_shib to
look for SAML, and otherwise passed through.
In our scenario, the CAS server is POST'ing a saml:logoutRequest to
the service entry point. So, we need to check all POSTs, handle it if
it is a logout request, or pass it on to the underlying service if it is
not.
> If you want a sample, I would probably be looking at stuff that does
> gzip
> decompression or something from the client.
This is exactly what we are looking at right now.
Thank you very much for the pointers!
-Matt
--
Matt Smith
University Information Technology Services (UITS)
University of Connecticut
PGP Key ID: 0xE9C5244E
Attachment:
signature.asc
Description: This is a digitally signed message part
- OT: Apache mod & POST filtering, Smith, Matt, 01/24/2008
- RE: Apache mod & POST filtering, Scott Cantor, 01/24/2008
- RE: Apache mod & POST filtering, Smith, Matt, 01/24/2008
- RE: Apache mod & POST filtering, Scott Cantor, 01/24/2008
- RE: Apache mod & POST filtering, Smith, Matt, 01/24/2008
- RE: Apache mod & POST filtering, Scott Cantor, 01/24/2008
Archive powered by MHonArc 2.6.16.