Raven/Shibboleth: Difference between revisions
From RavenWiki
Jump to navigationJump to search
(→Project Documents: Add More on eduPersonPrincipleName) |
(→Demo links: Note not all SP work; link to JVCS) |
||
| Line 45: | Line 45: | ||
* https://nevis.ed.ac.uk:8885/cgi-bin/printenv | * https://nevis.ed.ac.uk:8885/cgi-bin/printenv | ||
Example SPs via Shib: | Example SPs via Shib (not all guaranteed to be accessible from Cambridge): | ||
* [https://spaces.internet2.edu/display/SHIB/WebHome Shibboleth Project Wiki] | * [https://spaces.internet2.edu/display/SHIB/WebHome Shibboleth Project Wiki] | ||
* [https://weather.atomwide.com/ Atomwide Weather Project] | * [https://weather.atomwide.com/ Atomwide Weather Project] | ||
| Line 53: | Line 53: | ||
* [http://zetoc.mimas.ac.uk:8000/cgi-bin/wzshib Zetoc Search] (dito) | * [http://zetoc.mimas.ac.uk:8000/cgi-bin/wzshib Zetoc Search] (dito) | ||
* [http://www.jiscmail.ac.uk JISCMail] (see https://www.jiscmail.ac.uk/help/policy/shibmode.htm for details) | * [http://www.jiscmail.ac.uk JISCMail] (see https://www.jiscmail.ac.uk/help/policy/shibmode.htm for details) | ||
* [http://www.jvcs.ja.net/docs/bookingint.shtml JANET Videoconferencing Booking Service] | |||
These and other SPs are listed on the UK Federation's [http://www.ukfederation.org.uk/content/Documents/AvailableServices Available Services] page. | These and other SPs are listed on the UK Federation's [http://www.ukfederation.org.uk/content/Documents/AvailableServices Available Services] page. | ||
Revision as of 15:35, 23 July 2007
Shibboleth information
Background
- A brief introduction to Shibboleth
- Shibboleth Glossary
- "Federated Security: The Shibboleth Approach", R. L. "Bob" Morgan, Scott Cantor, Steven Carmody, Walter Hoehn, and Ken Klingenstein - as html; as pdf
- Part 3 of "Web Services Security", Bilal Siddiqui, talks about SAML (the Security Assertions Markup Language) which is what underpins Shibboleth. Part 1 Part 2 Part 3 Part 4
- John Paschoud's 'Shibboleth: Guide for SysAdmins'
- Jon's IT Liaison Meeting presentation, Jan 2007
- Jon's Techlink presentation, May 2007 as HTML, as PDF
Organizations
- JISC, and their Shibboleth plans (MS Word format, sorry)
- BECTA
- The UK Access Management Federation
Shibboleth-compliant publishers
Software and reference
- Internet2 Shibboleth Project
- Guanxi (an alternative implementation)
- SAML
- EduPerson (while Shib doesn't require the EduPerson LDAP schema, it does use it to define some attributes)
- Athens:
- ArpViewer
Shibboleth Development Project
Demo links
UK Federation test targets (only the first will work from Lapwing):
- https://target.sdss.ac.uk/secure/index.html
- https://target.iay.org.uk:8446/secure/index.html
- https://target.iay.org.uk:8446/secure/printenv.cgi
- https://nevis.ed.ac.uk:8885/cgi-bin/printenv
Example SPs via Shib (not all guaranteed to be accessible from Cambridge):
- Shibboleth Project Wiki
- Atomwide Weather Project
- ScienceDirect
- Film & Sound Online
- Zetoc Alert (using SDDS SSL certificate; not from Lapwing)
- Zetoc Search (dito)
- JISCMail (see https://www.jiscmail.ac.uk/help/policy/shibmode.htm for details)
- JANET Videoconferencing Booking Service
These and other SPs are listed on the UK Federation's Available Services page.
- Local demo site on mnementh
Example Athens content providers via Shib->Athens gateway:
- Set HDDS cookie and come back here (using setorg.php)
- Set HDDS cookie and go to MyAthens (using setsite.php)
Project Documents
- Shibboleth Attribute Usage and Derivation
- Assigning Athens permissions sets
- Data Protection issues with Shibboleth
- Shibboleth Attribute Release policy summary
- Shibboleth Attribute Release meta-Policy
- Using the Shibboleth to Athens Gateway
- Athens DA Protocol
- A University Shibboleth Glossary
- University IdP Terms and Conditions
- More on eduPersonPrincipleName
