Download & Extend
Shibboleth authentication » Issues

SessionInitiator URL construction should be more customizable

Posted by bajnokk on February 29, 2008 at 10:37am
Project:Shibboleth authentication
Version:5.x-1.x-dev
Component:Code
Category:feature request
Priority:normal
Assigned:Unassigned
Status:closed (fixed)

Issue Summary

Shibboleth SessionInitiator URL is built up as the following:

_HandlerURL_/_Location_

where
- _Location_ is the unique identifier of the SessionInitiator in /etc/shibboleth/shibboleth.xml
- _HandlerURL_ is the unique handlerUrl of the Application in /etc/shibboleth/shibboleth.xml, which can be an
-- absolute path (like https://my.site.com/Shibboleth.sso)
-- relative path (like /Shibboleth.sso, that should be the default), then HandlerURL should be _protocol_://HTTP_SERVER/_relative path_
- _protocol_ can be http or https (should default to https, customizable only if HandlerURL is a relative path)

"Login with Shibboleth" button should link this URL.

So the changes I'm proposing is:

  • Add a configuration item handlerUrl with a default value of '/Shibboleth.sso'
  • Add a configuration item of handlerProtocol only effective when the value of handlerUrl is a relative path
  • (existing) WAYF location configuration entry should not contain '/Shibboleth.sso'
Login or register to post comments

Comments

#1

Posted by flibustyer on February 29, 2008 at 12:49pm

Thanks for that info.

#2

Posted by niif on March 12, 2008 at 12:22pm

fixed in 6.x-1.x-dev snapshot release

#3

Posted by niif on April 25, 2008 at 12:13pm
Status:active» closed (fixed)
nobody click here