Shibboleth Developers

["Jones, Mark B" <>]

Is there a current or future solution to this 'electronic signature' use
case?

It is my impression that there is no way to force the user to
re-authenticate.  Is that correct?

-----Original Message-----
From: Curfman, Patrick 
Sent: Friday, September 24, 2010 11:56 AM
To: Jones, Mark B
Cc: Weems, William A
Subject: FW: [REDCap] E-Signature and Shibboleth

You guys may be able to help with this topic.  I know we have discussed this
possibility before.

-----Original Message-----
From: 

[mailto:]
 On Behalf Of Taylor, Rob
Sent: Friday, September 24, 2010 11:49 AM
To: 

Subject: RE: [REDCap] E-Signature and Shibboleth

Hi Todd,

That's interesting. I had forgotten that Shibboleth doesn't perform a login
automatically when simply given credentials, but instead requires
redirection to a different page for manually entering the username/password
(and then redirection back to REDCap afterward). Essentially, when you do an
e-signature, it forces you to enter your name and password, which does an
ajax call to Locking/single_form_action.php and then passes the
username/password that you entered into the function checkUserPassword(),
which attempts to create a separate login session (to not conflict with your
current one) and returns true or false if it was successful. So if REDCap is
using ldap or table authentication, it's able to use your credentials to
automatically check if they work, but given the whole Shibboleth
redirection, this cannot be done in such a way, thus producing this issue.

Does any Shibboleth users out there know any quick and dirty ways to pass a
username/password pair  to Shibboleth and receive a true/false return value
if they worked or not? Otherwise, we may have to disable the e-signature
functionality when using Shibboleth.

Rob Taylor 
Vanderbilt Medical Center (Office of Research Informatics)
2525 West End Ave., 6th Floor, Nashville, TN 37203
(615) 343-9024
http://www.project-redcap.org/


-----Original Message-----
From: 

[mailto:]
 On Behalf Of Todd Ferris
Sent: Thursday, September 23, 2010 6:46 PM
To: 

Subject: [REDCap] E-Signature and Shibboleth

Hi there,

We have version 3.4.1 on our dev system (currently running 3.1.1 in
production) and we are using shibboleth authentication system.

I was playing with the E-Signature feature and realized that the password
screen doesn't play well with the shibboleth authentication.

I took a look at the code in "Locking" directory, but a quick look didn't
reveal an obvious solution.

Anyone else thought about this?  Did I just miss a configuration?  or is
E-Signature only currently work with table based auth?

Thanks
Todd
Todd Ferris, MD, MS
Associate CIO
Information Resources and Technology (IRT) Stanford University School of
Medicine

t: 650.725.1825
f: 650.725.4415
e: 

http://med.stanford.edu/irt/

--
To post to this group, send email to 

 To
unsubscribe from this group, send email to

For more options, visit this group at
http://groups.google.com/group/project-redcap?hl=en

-- 
To post to this group, send email to 

To unsubscribe from this group, send email to

For more options, visit this group at
http://groups.google.com/group/project-redcap?hl=en

Attachment: smime.p7s
Description: S/MIME cryptographic signature