Shibboleth Developers

[Chad La Joie <>]

For the CAPTCHA, I guess it depends on how exactly you'd do that.
I've seen systems that always display a random image, every single
time you need to log in, and then just do a very simple check.  That
could be added to a login handler.

However, I've seen far more advanced setups as well, things where the
image isn't exactly random (it's based off some text you give when you
set up your account) or only shows up under certain conditions.  In
those cases, this really has to be part of your authn service.  If it
is then you need to figure out what the best way is to integrate your
particular authn service with the IdP.  But none of that would be
standard in any fashion so whatever you do would be a one-off
extension.

On Tue, May 31, 2011 at 17:41, Leif Johansson 
<>
 wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 05/31/2011 11:02 PM, Chad La Joie wrote:
>> It's not really a Shib topic.  Either your authentication system does
>> it or it doesn't.  If it doesn't, that's where you need to added the
>> features you require.
>
> I beg to disagree. If its captchas you want to use and if you use
> username+passwords with the shibboleth authentication handler then
> this has to be done in the IdP, right?
>
>        Cheers Leif
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.11 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
>
> iEYEARECAAYFAk3lYHsACgkQ8Jx8FtbMZnehNwCfRsy1Ff0vQ1XB5qJM4W9w2Q/B
> RiMAoKTEEMwzsoqKxuXoF/EJrUoTCey3
> =G7FV
> -----END PGP SIGNATURE-----
>



-- 
Chad La Joie
www.itumi.biz
trusted identities, delivered