Shibboleth Developers

[Chad La Joie <>]

Executing a native command is possible (Java has exec support), though 
my past experience (about a year ago) has shown that it's really very slow.

I think the hard part would be coming up with a way to express what 
sorts of arguments you wanted to pass the script, that is, how would you 
create the argument and interpolate the attribute values?  My initial 
thought would be to simply use the velocity language used to create the 
LDAP and Database queries.  So you'd create a template that evaluated to 
the argument string for the command.

Can you think of something else?

On 5/26/10 2:35 PM, Etan Weintraub wrote:
> Chad- Not sure how much work it would be, but one thing I would like
> to be considered is in addition to the Scriptlet handling of
> attributes, possibly something that will drop out to a command line
> executable (i.e. a Perl script) with arguments that would include
> attribute values or entityID's or anything else available to the
> request that would then return the value for the final attribute.
> This would allow for the frequently asked for Perl script support
> without having to actually support Perl in the XML, and with opening
> it up to pretty much any other code library an admin would want to
> use as long as they could make it a command line tool.


--
Chad La Joie
http://itumi.biz
trusted identities, delivered