SP - IdP Redirects Question
Chad La Joie
lajoie at itumi.biz
Wed Nov 30 16:32:49 GMT 2011
Please don't cross-post to different lists. Questions like this
belong solely on the user's list.
To answer your first two questions, you should start by reading the
SAML profile document. It describes the ways in which information
flows from one SAML entity to another.
Once the SAML process is complete, the service provider will, by
default, redirect the user back to the URL they were originally trying
to access. The information received from the IdP is then available to
the application as CGI variables.
On Wed, Nov 30, 2011 at 11:16, Olga Biasotti
<obiasotti at highwire.stanford.edu> wrote:
> Hello Shibboleth Developers,
> As I am new to Shibboleth and working on porting a current SP Shibboleth app
> to a new system, I have so roadblocks I hope someone can help me with.
> Here are some questions I have:
> 1) After my SP forwards the user to the IdP Url with EntityId=<IdP> , and
> IdP authenticates the user, what process is used for the IdP to forward the
> user back to my site.
> a) Is it only through configurations in shibboleth2.xml on my shibboleth
> 2) Are there any parameters attached to the URL that IdP modifies before
> forwarding the user back to me
> 3) Is it through some other mechanism
> 2) Is the user redirected back to the same location that redirected the user
> to the IdP or different.
> 3) When I receive the redirected reply from IdP, is the profile information
> about the user already there, or do I need to create/generate it.
> Any feedback would be greatly appreciated. Thanks so much!
> Olga Biasotti
> HighWire Press
> Stanford University
> 1454 Page Mill Road
> Palo Alto CA 94304
> To unsubscribe from this list send an email to
> dev-unsubscribe at shibboleth.net
Chad La Joie
trusted identities, delivered
More information about the users