shibboleth-dev - Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT
Subject: Shibboleth Developers
List archive
- From: Ajay Daryanani Arjandas <>
- To: Tom Scavo <>
- Cc:
- Subject: Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT
- Date: Mon, 18 Feb 2008 17:13:22 +0100
- Organization: RedIRIS
Hi Tom,
(my previous email was not delivered to the list, as I was not suscribed; but it can be found inline in Tom's reply)
Tom Scavo wrote:
Thanks for the update, I look forward to reviewing the code. May I
ask what license is associated with this code?
The code will be released under the general GÉANT2 license, which is under discussion. But don't expect any problems by using it, as it will be somehow open source code. Moreover, being I2 and GN2 partners in perfSONAR, I would be quite surprised if anyone raised objections about it.
Regards,
Ajay
Thanks,
Tom
On Feb 18, 2008 5:48 AM, Ajay Daryanani Arjandas
<>
wrote:
Hi all,
the eduGAINFilter code is not yet available publicly, but will be quite
soon. I have to polish some details in the code and documentation, and I
expect to have it ready by the end of this week.
I'll let you know where to find the source code (when ready) through
this list.
As I'm not an expert on Shibboleth, I would like to ask what are the
differences in terms of validation with respect to eduGAIN.
Regards,
Ajay
Tom Scavo wrote:
Thanks, Diego. So then I'll ask the same question Steven asked awhile--
ago :-) Is the code available for download and what is the license
attached to this code? I know some folks who are very anxious to have
a Java SP and this seems to be a good first step.
Many thanks,
Tom
On Feb 17, 2008 5:45 PM, Diego R. Lopez
<>
wrote:
On 15 Feb 2008, at 22:09, Tom Scavo wrote:
Is the Shib 1.3 IdP involved in this exchange an ordinary IdP, or isThis is what the eduGAIN profile says about WebSSO using SAML 1.1:
it extended to support the eduGAIN WebSSO profile in some way?
For those eduGAIN BEs configured to use SAML 1.1, Web SSO proceduresSo an ordinary Shib IdP should be able to connect to eduGAIN, as long as
MUST comply with those described by the Shibboleth Web SSO Browser/
POST profile (as described in [SAMLBind] and [ShibArch]), and
according to the following rules:
· The providerId parameter used in the GET request to the H-BE
SHALL contain the unique identifier of the requesting R-BE. It MUST
be coded according to the structure defined for BE identifiers in
the guidelines of section 3.1.
· The SAML response sent by the H-BE SHALL comply with the SAML
1.1 mapping of an eduGAIN AuthenticationResponse as described in the
corresponding section of this document.
· If an error occurs, the H-BE MUST return a SAML <Response> in
accordance with the SAML Browser/POST profile and coded according to
the rules described for the SAML mapping of eduGAIN
AuthenticationResponse with error results.
it uses a certificate issued according to eduGAIN rules. We have
arlready demonstrated interoperability in the other direction: the
CO-Manage demo site at http://comanage.internet2.edu/ accepts identity
assertions coming from eduGAIN IdPs.
Be goode,
--
"Esta vez no fallaremos, Doctor Infierno"
Dr Diego R. Lopez
Red.es - RedIRIS
The Spanish NREN
e-mail:
jid:
Tel: +34 955 056 621
Mobile: +34 669 898 094
-----------------------------------------
=============================================
Ajay Daryanani Arjandas
Area de Middleware
RedIRIS / Red.es
Edificio Bronce
Plaza de Manuel Gómez Moreno, s/n - 2ª planta
28020 Madrid
Tel.: 91 212 76 20 (Ext. 5541)
Fax : 91 556 88 64
e-mail:
jid:
http://www.rediris.es
=============================================
--
=============================================
Ajay Daryanani Arjandas
Area de Middleware
RedIRIS / Red.es
Edificio Bronce
Plaza de Manuel Gómez Moreno, s/n - 2ª planta
28020 Madrid
Tel.: 91 212 76 20 (Ext. 5541)
Fax : 91 556 88 64
e-mail:
jid:
http://www.rediris.es
=============================================
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, (continued)
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Scott Cantor, 02/11/2008
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/12/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Diego R. Lopez, 02/13/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/14/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Diego R. Lopez, 02/14/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/15/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Tom Scavo, 02/15/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Diego R. Lopez, 02/17/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Tom Scavo, 02/17/2008
- Message not available
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Tom Scavo, 02/18/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Ajay Daryanani Arjandas, 02/18/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/18/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Ajay Daryanani Arjandas, 02/19/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Chad La Joie, 02/19/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Diego R. Lopez, 02/19/2008
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Scott Cantor, 02/19/2008
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/12/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Steven_Carmody, 02/20/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Ajay Daryanani Arjandas, 02/20/2008
- RE: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Scott Cantor, 02/11/2008
- Re: SHIB Status call -- 2/11/2008) -- 12:00 pm EDT, 9 am PDT, Tom Scavo, 02/11/2008
Archive powered by MHonArc 2.6.16.