Shibboleth Developers

["Scott Cantor" <>]

> With suitable technical wizardry, I've little doubt that we can now bridge
> the gateways SAML1.1 endpoints to Shib endpoints - given Shib is a profile
> of the SAML1.1 standard.

Shibboleth is many things. That particular definition is fairly out of date.
The second generation of Shibboleth software already supports SAML 2.0 as
of, well, now, and any basis for interop should probably start there. If you
have a SAML 2 gateway, you're done, at least protocol-wise (ignoring my
general opinion of gateways).

> If we can accomplish the above, two worthwhile goals will have been met:
(1)
> the grassroots-centric OpenID standards process will gain direct access to
> the federation trust modeling work perfected in Shib

I would suspect that that's a more fruitful line of inquiry than the fairly
trivial issue of gatewaying between protocols.

> and (2) if the
> approach were to be adopted by the Shib community, academic users with
Shib
> credentials would be able to exploit them on the fast emerging OpenID-
> enabled sites.

No offense, but what are those exactly?

It's also fair to say there isn't a single uniform Shibboleth community.
You'll get a lot of different perspectives on the idea.

-- Scott