Skip to Content.
Sympa Menu

shibboleth-dev - Re: .NET Shibboleth IdP

Subject: Shibboleth Developers

List archive

Re: .NET Shibboleth IdP


Chronological Thread 
  • From: "Chris G. Sellers" <>
  • To:
  • Subject: Re: .NET Shibboleth IdP
  • Date: Fri, 28 Mar 2008 09:45:00 -0400
Since you are a newbie, which I was just a few months ago, I would suggest you setup shibboleth using the instructions on the wiki to get a feel for how it works end to end.  It's not for the light of heart, and I fear you are treading into a headache.  

For moodle, they rely on the mod_shib.so library for trapping the request and sending it somewhere for authentication.  As far as I know they do not ship that.

mod_shib.so will then need to talk to a shibd process, or something that handles that.  They do not ship shibboleth shibd process as far as I know.

I would start with Shibboleth 2.0.  The Shibboleth SP is backward compatible to 1.3.    I would also reference the shibboleth-users mailing list for questions, comments, and problems that other people have had.  You can google and the shibboleth-users mailing list will come up.   If you can not find your problem, you can post to that list. 

I recommend starting here since you are a ".NET" shop.


Sellers

On Mar 28, 2008, at 9:02 AM, Wes Plybon wrote:
Wow… LOTS of replies.  Thank you all, upfront, for getting back to me J.
 
To start off,
 
“I'm not sure what your question actually is..."is my response OK?" Something else?”
 
Being fairly new to the whole SAML scene (3 weeks at best) I’m still not entirely sure what I’m doing with it and am kind of throwing together code based on what I’m reading.  So, yea does my response look OK?
 
Also, it would seem I might have some kind of misunderstanding about Moodle’s role as the SP. 
 
“You do need an SP.  They include the glue to talk to an SP which I think is mostly some php. It works really well, auto-provisioning and everything.  They did a good job in my opinion.”
 
My understanding was that the Shib authn code provided allowed Moodle to act as the SP.  But this seems to indicate that I’ll need a SP of my own to get Moodle working?  If there’s no SP for Moodle then that could be my whole problem, hah! J  We have a MoodleRooms account, because our clients that use Moodle all host on MoodleRooms.  That said, MoodleRooms may have a Shib SP running on their servers, but as for my test environment, I certainly don’t.  That also means, that I could very well just not worry about SAML 1.1 right now and start off with 2.0 and we’ll support 1.1 later when we find the need to.
 
Do I sound like I’m on the right track?
 
--Wes

______________________________________________
Chris G. Sellers | NITLE  - Technology Team
734.661.2318 |
AIM: imthewherd | GoogleTalk:


Archive powered by MHonArc 2.6.16.

Top of Page