Shibboleth Developers

[<>]

I re-read this and I don’t think I was entirely clear on what I am trying to do.  I am specifically concerned only with a user’s authentication to the IDP (and not an SPs).  I am trying to use the RemoteUser  endpoint in Shibboleth 2.0.  I am just unsure how to configure the container to populate REMOTE_USER.  In Shibboleth 1.3, there was a class/filter you configured to specify it (edu.internet2.middleware.shibboleth.utils.ClientCertTrustFilter).

 

 

From: [mailto:]
Sent: Thursday, January 31, 2008 1:49 PM
To:
Subject: User Authentication on the IDP?

 

Has anyone deployed using client certificate authentication (CCA) on the IDP with Shibboleth 2.0?  I need to deploy an IDP with CCA, and enabling it in the Tomcat container is easy (and done), but the technique used in Shibboleth 1.3, I can’t seem to find a way to reproduce that in Shibboleth 2.0. 

Has anyone does this?  Is there a resource somewhere that explains how to do it (I couldn’t find anything on the wiki)?

 

Is this something that I will need to dig into JAAS to do?  In the old Shibboleth (I realize the authentication endpoint was much simpler then), it was a simple matter of configuring a filter to specify what part of the Cert should be delivered to Shibboleth as REMOTE_USER.