Raven/Shibboleth: Difference between revisions
From RavenWiki
Jump to navigationJump to search
(Link to policy summary) |
(→Project Documents: Add glossary and Ts &Cs links) |
||
| Line 74: | Line 74: | ||
* [[Using the Shibboleth to Athens Gateway]] | * [[Using the Shibboleth to Athens Gateway]] | ||
* [[Athens DA Protocol]] | * [[Athens DA Protocol]] | ||
* [[A University Shibboleth Glossary]] | |||
* [[University IdP Terms and Conditions]] | |||
Revision as of 13:18, 26 June 2007
Shibboleth information
Background
- A brief introduction to Shibboleth
- Shibboleth Glossary
- "Federated Security: The Shibboleth Approach", R. L. "Bob" Morgan, Scott Cantor, Steven Carmody, Walter Hoehn, and Ken Klingenstein - as html; as pdf
- Part 3 of "Web Services Security", Bilal Siddiqui, talks about SAML (the Security Assertions Markup Language) which is what underpins Shibboleth. Part 1 Part 2 Part 3 Part 4
- John Paschoud's 'Shibboleth: Guide for SysAdmins'
- Jon's IT Liaison Meeting presentation, Jan 2007
- Jon's Techlink presentation, May 2007 as HTML, as PDF
Organizations
- JISC, and their Shibboleth plans (MS Word format, sorry)
- BECTA
- The UK Access Management Federation
Shibboleth-compliant publishers
Software and reference
- Internet2 Shibboleth Project
- Guanxi (an alternative implementation)
- SAML
- EduPerson (while Shib doesn't require the EduPerson LDAP schema, it does use it to define some attributes)
- Athens:
- ArpViewer
Shibboleth Development Project
Demo links
UK Federation test targets (only the first will work from Lapwing):
- https://target.sdss.ac.uk/secure/index.html
- https://target.iay.org.uk:8446/secure/index.html
- https://target.iay.org.uk:8446/secure/printenv.cgi
- https://nevis.ed.ac.uk:8885/cgi-bin/printenv
Example SPs via Shib:
- Shibboleth Project Wiki
- Atomwide Weather Project
- ScienceDirect
- Film & Sound Online
- Zetoc Alert (using SDDS SSL certificate; not from Lapwing)
- Zetoc Search (dito)
These and other SPs are listed on the UK Federation's Available Services page.
- Local demo site on mnementh
Example Athens content providers via Shib->Athens gateway:
- Set HDDS cookie and come back here (using setorg.php)
- Set HDDS cookie and go to MyAthens (using setsite.php)
Project Documents
- Shibboleth Attribute Usage and Derivation
- Assigning Athens permissions sets
- Data Protection issues with Shibboleth
- Shibboleth Attribute Release policy summary
- Shibboleth Attribute Release meta-Policy
- Using the Shibboleth to Athens Gateway
- Athens DA Protocol
- A University Shibboleth Glossary
- University IdP Terms and Conditions
