Dynamic Configuration of IdP
James Miller
jmiller at turnitin.com
Mon Sep 30 23:43:16 EDT 2013
You shouldn't have to set up a separate landing page for each IDP you wish
to serve in any case. The name the of the IDP should be available as an
environment variable -- I believe the default being
'Shib-Identity-Provider'.
On Mon, Sep 30, 2013 at 8:16 PM, M <mlsaghir at yahoo.com> wrote:
>
> We would much prefer to get the metadata from a third party. Are you
> referring to something like InCommon? Some of our clients use InCommon,
> but many do not. So even if we used a third party federation, wouldn't we
> need a way to handle the clients who don't use a federation?
>
>
>
> ------------------------------
> On Mon, Sep 30, 2013 11:00 PM EDT Cantor, Scott wrote:
>
> >On 9/30/13 10:52 PM, "M" <mlsaghir at yahoo.com> wrote:
> >
> >> However, I am unsure what you mean by loading the IdPs meta data. I
> >>read up on Folder metadata provider and a metadata aggregate so I have
> >>some understanding of how they work. So would one way to save the meta
> >>data be to have a file for each IdP in the Folder, which is then loaded?
> >>The documentation says that new files will not be detected though, so how
> >>should new IdPs be handled?
> >
> >Ideally by leveraging third party federations to manage the metadata for
> >you. If you really insist on being one yourself, you should generate all
> >of the metadata in one file and update that file to make changes.
> >
> >-- Scott
> >
> >
> >
> >--
> >To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
> --
> To unsubscribe from this list send an email to
> users-unsubscribe at shibboleth.net
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://shibboleth.net/pipermail/users/attachments/20130930/c93c65ae/attachment.html
More information about the users
mailing list