Shibboleth Developers

["Tom Scavo" <>]

Is the Shib 1.3 IdP involved in this exchange an ordinary IdP, or is
it extended to support the eduGAIN WebSSO profile in some way?

Thanks,
Tom

On Thu, Feb 14, 2008 at 12:51 PM, Diego R. Lopez 
<>
 wrote:
>
>  On 14 Feb 2008, at 16:19, 
> 
>  wrote:
>  > could you be a bit more specific about what this filter does? I'm
>  > guessing it communicates with a local eduGAIN component? Conforming
>  > to an eduGAIN profile? Does it actually support one of the SAML
>  > profiles?
>
>  eduGAINFilter is an implementation of a javax.servet.filter that:
>
>  a) Checks whether the request comes with the SSO token (cookie) it
>  genereates.
>
>  b) If cookie is not present or expired, it redirects the user browser
>  to an
>    IdP using the Shib 1.3 profile (i.e., the eduGAIN WebSSO profile
>  for SAML1.1)
>
>  c) Collects the response, extracts attributes and makes their values
>  available
>    in the application context.
>
>  There is only a point in which some changes could be necessary to make
>  eduGAINFilter
>  act as a pure Shib SP: the validation process, since the eduGAIN
>  validation libraries are a little bit more stringent than general Shib
>  procedures
>  mandate. I think this is not a great issue...
>
>  I'm cc-ing Ajay, who is the eduGAINFilter developer, so he can give
>  you more
>  detailed answers.
>
>
>
>  Be goode,
>
>
>  --
>  "Esta vez no fallaremos, Doctor Infierno"
>
>  Dr Diego R. Lopez
>
>  Red.es - RedIRIS
>  The Spanish NREN
>
>  e-mail: 
> 
>  jid:    
> 
>  Tel:    +34 955 056 621
>  Mobile: +34 669 898 094
>  -----------------------------------------
>
>
>