Stack Overflow
Stack Overflow

Questions tagged [shibboleth]

A standards based, open source software package for web single sign-on across or within organizational boundaries.

The Shibboleth software implements widely used federated identity standards, principally OASIS' Security Assertion Markup Language (SAML), to provide a federated single sign-on and attribute exchange framework.

Shibboleth also provides extended privacy functionality allowing the browser user and their home site to control the attributes released to each application.

Using Shibboleth-enabled access simplifies management of identity and permissions for organizations supporting users and applications.

Shibboleth is developed in an open and participatory environment, is freely available, and is released under the Apache Software License.

559 questions
34
votes
4 answers

NoClassDefFoundError: org/w3c/dom/ElementTraversal

I installed Jetty 7 and configured it correcty for IdP Shibboleth following this guide: https://wiki.shibboleth.net/confluence/display/SHIB2/IdPJetty7Prepare But when i try to start Jetty I get this error: NoClassDefFoundError:…
Mustapha Aoussar
  • 5,833
  • 15
  • 62
  • 107
26
votes
11 answers

Logging into SAML/Shibboleth authenticated server using python

I'm trying to login my university's server via python, but I'm entirely unsure of how to go about generating the appropriate HTTP POSTs, creating the keys and certificates, and other parts of the process I may be unfamiliar with that are required to…
David Perlaza
  • 580
  • 2
  • 5
  • 9
23
votes
3 answers

Difference between Shibboleth and CAS?

Please explain what the differences are between Shibboleth and CAS?
Mike Flynn
  • 22,342
  • 54
  • 182
  • 341
23
votes
1 answer

Single Sign-On in Spring by using SAML Extension and Shibboleth

I'd like to implement a Single Sign-on (SSO) authentication layer in my Spring-based application with the aim of supporting authentication and authorization from different security domains. I've chosen Shibboleth as IdP, but I have yet to identify…
vdenotaris
  • 13,297
  • 26
  • 81
  • 132
21
votes
12 answers

Best practices for login pages?

I am working on a single sign-on login page using Shibboleth that will be used for a variety of web applications. Obviously we would like to make this page as secure and usable as possible while limiting the effects of phishing scams. What are the…
Joe Lencioni
  • 10,231
  • 18
  • 55
  • 66
18
votes
3 answers

Django and Shibboleth

I'm investigating the options for using Shibboleth in a Django deployment. From what I've found, things look somewhat sparse. Can anyone comment on the following? Is anyone using the django_shibboleth module (see…
user1007116
  • 181
  • 1
  • 3
18
votes
2 answers

Single Sign On for a Web App

I have been trying to understand how this problem is solved for over a month now. I really need to come up with a general approach that work. I have a theory, but I'm just not sure it's the easiest (or correct) approach and I haven't been able to…
Jeremy Goodell
  • 18,225
  • 5
  • 35
  • 52
18
votes
1 answer

understanding Shibboleth and SAML

I have a Drupal site I am standing up for a client. I've been asked to use Single Sign on using SAML2 (where I would be the service provider and my client would be the identity provider). The best thing I have found so far has been…
Hortitude
  • 13,638
  • 16
  • 58
  • 72
13
votes
3 answers

Shibboleth and .NET

I've got a requirement that a ASP.NET web app use Shibboleth for the authentication. Has anyone done this before? Are there libraries out there to support the method calls? Or is this a Java only thing?
Josh
  • 10,352
  • 12
  • 58
  • 109
13
votes
3 answers

How to implement or integrate single sign on with SAML and Shibboleth

We have two separate products, both including web app and server. We want to implement Single Sign On for both of them, so when a user has logged into one product, he can automatically access resources in the other product belonging to him. I have…
performanceuser
  • 2,793
  • 5
  • 34
  • 44
12
votes
2 answers

how to authenticate a shibboleth multi-hostname website with httr in R

note: ipums international and ipums usa probably use the same system. ipums usa allows quicker signup. if you would like to test out your code, try https://usa.ipums.org/usa-action/users/request_access to sign up! i am trying to programmatically…
Anthony Damico
  • 5,779
  • 7
  • 46
  • 77
12
votes
2 answers

What is the purpose of SAML 2 Subject Name Identifier?

When doing authn against a SAML 2 IdP, what does the Subject Name Identifier supposed to be for? Does it track each user login? I'm wondering if my SAML 2 service provider application should track these for different users. Since they are transient,…
danludwig
  • 46,965
  • 25
  • 159
  • 237
11
votes
1 answer

Python SSO: pysaml2 and python3-saml

I new to SSO and I've only tried pysaml2 by far. I am also aware of python3-saml library (and its python-saml Python 2 flavour). I need to use one of those with Shibboleth, if it is relevant. What are the pros and cons of pysaml2 and…
Art
  • 2,235
  • 18
  • 34
11
votes
2 answers

SAML2 Metadata - Multiple Signing Certificates

I'm looking at a SAML IdP's metadata and it lists three unique certificates - 2 signing and 1 encryption. ...
Daniel Gatto
  • 113
  • 1
  • 1
  • 5
11
votes
2 answers

Apache Config - Exclude Location from Authentication

I have a web application that is being protected by a Shibboleth authentication module. My current config is as below AuthType shibboleth ShibUseHeaders On ShibRequestSetting requireSession 1 require shibboleth The…
mekatoka
  • 263
  • 2
  • 5
  • 11
1
2 3
37 38