Stack Overflow
Stack Overflow

Questions tagged [shibboleth]

A standards based, open source software package for web single sign-on across or within organizational boundaries.

The Shibboleth software implements widely used federated identity standards, principally OASIS' Security Assertion Markup Language (SAML), to provide a federated single sign-on and attribute exchange framework.

Shibboleth also provides extended privacy functionality allowing the browser user and their home site to control the attributes released to each application.

Using Shibboleth-enabled access simplifies management of identity and permissions for organizations supporting users and applications.

Shibboleth is developed in an open and participatory environment, is freely available, and is released under the Apache Software License.

559 questions
0
votes
1 answer

Shibboleth header attributes not being sent to all pages

I have the following configuration in Apache in my service provider: AuthType Shibboleth ShibRequireSession On ShibUseHeaders On require valid-user After authentication, I tried to access the headers…
Sean Xiao
  • 606
  • 1
  • 12
  • 20
0
votes
1 answer

Set custom property in Tomcat7

We are running our application using Tomcat-7 in Windows environment. We are using Shibboleth IDP for our application, due to this we need to set system property at the container level to identify one new property called "idp.home". So we found that…
M.S.Naidu
  • 2,239
  • 5
  • 32
  • 56
0
votes
1 answer

Shibboleth ignoring configuration settings

When testing shibd from command line (/usr/sbin/shibd -t) I'm seeing this warning: WARN Shibboleth.Application : empty/missing cookieProps setting, set to "https" for SSL/TLS-only usage My app is in fact HTTPS only, so I want to extend this to…
a coder
  • 7,530
  • 20
  • 84
  • 131
0
votes
1 answer

Shibboleth - Secure different URLs with different IdPs

We have a server that is going to have different web applications for different clients. I need to be able to secure one web app with one IdP, and another web app with a different IdP. Sich as below: "my.host.com/webapp1" with…
TruthOf42
  • 2,017
  • 4
  • 23
  • 38
0
votes
1 answer

Shibboleth and user registration

In a company we want to implement an SSO solution for our customers. We have 4 different portals - Jira, 2 WordPress websites and Joomla website and OpenLDAP as a user directory. Our choice fell on Shibboleth provider and we have already tried to…
Vladimir Emelianov
  • 1
0
votes
1 answer

Unable to access claims or saml attributes via Kentor.AuthServices.Owin in MVC

I am building an .net 4.5 MVC application which connects to a Shibboleth-based SAML IdP, to provide single-sign-on functionality. To do this I am using the Kentor.AuthServices.Owin middleware. The IdP service in question requires use of encrypted…
Richard Shaw
  • 41
  • 5
0
votes
0 answers

how to redirect from Shibboleth.sso/SAML2/POST to index.html

I have Configured Service Provider on my server(iis), it seems everything works fine. Login good. SAML encoding fine. But it redirect me to "https://example.com/Shibboleth.sso/SAML2/POST" and i want to go to…
Ishfaq Ahmad
  • 88
  • 1
  • 13
0
votes
1 answer

Shibboleth IDP Installation on Tomcat 8 : Found error java.lang.ClassNotFoundException: net.shibboleth.utilities.ssl.TrustAnyCertificate

I follow the step by step to setup shibboleth idp on tomcat 8 based on this link https://wiki.shibboleth.net/confluence/display/IDP30/ApacheTomcat8 I have successfully installed the shibboleth-idp and build the war file. And I found error during the…
Benny Iskandar
  • 121
  • 2
  • 6
0
votes
1 answer

User management and single-sign on over REST

I am building a web application with front-end coded in angular. The front-end will access a bunch of web-services coded in Java/Spring. There might be other ways that people may try to access the webservices such as from a desktop tool. Now I need…
user3685514
  • 41
  • 1
  • 3
0
votes
0 answers

Should redirecting to a splash page/system (users who are not shibboleth authenticated) be done at apache or application level

Right now, when the user visits my site abc.com, shibd (which is a daemon running on the server) will intercept and redirect the non shib authenticated users to the authentication page. I want the user to go to a splash page instead. The tricky…
Christopher D
  • 1
0
votes
2 answers

Set REMOTE_USER in apache before proxy to tomcat

Is there a way in apache to set REMOTE_USER to a particular value for certain URLS, prior to AJP-proxying the request to tomcat? I have an SSO (Apache/mod_shib)-fronted tomcat application. Some of the URLs still need to be publicly-accessible. I…
Don Faulkner
  • 121
  • 7
0
votes
1 answer

Configure Shibboleth SP with WSO2 IS IDP

I'm trying to configure Shibboleth SP with WS02 Identity Server IDP. Shibboleth SP version 2.5.3 is installed and configured on Linux Redhat. Apache HTTPD 2.4.6 is installed and configured on the same server. Both services are running. WSO2…
Stephen Brennan
  • 128
  • 4
0
votes
1 answer

Shibboleth SP clustering

We are supporting a multi-tenant application. Most of the time, there is substantial load on our application. Our technology stack involves: Rails 3.2.13 Ruby 1.9.3 Running on Apache/2.2.15 (Unix) with Passenger(3.0.11). Related Gems: devise…
arrk-shoba
  • 39
  • 3
0
votes
1 answer

Fetch env variables set by shibboleth in phusion passenger rails4

In a rails4.2.0 app, with phusion passenger 5.0.2 under apache-2.2.22 (Debian GNU/Linux) I am not able to fetch environment variables set by mod_shibboleth (2.5.3-0switchaai1). I used to write: request.env["uid"] in shibboleth-protected Locations,…
francesco
  • 11
  • 2
0
votes
1 answer

got error 404 while installing shibboleth, unable to get idp/status

I am new to this shibboleth Identity Provider and evaluating shibboleth want to use for Identity provider for our application, tried to install shibboleth 2.4.0, after following detailed steps form…
Indrani Sen
  • 287
  • 4
  • 19
1 2 3
37 38