RequestMap Query applicationId
tom.haenen at reqtest.com
Mon May 12 04:37:27 EDT 2014
We are trying to integrate your service provider into our product and ran into a mismatch bewteen the documentation and the actual functionality.
We have a cloud service and are setting up an SP and we want to support all the IdP's of our customers. In our setup we use our current login page and check for an enityID in the query string to see if the user wants to use SSO and which IdP will provide the identity.
Since not all IdP's supply their attributes in the same way we want to be able to have a separate attribute map for each IdP. I tried to configure this by specifying applicationId's in shibboleth2.xml at <RequestMap> (see below). After some testing I realized that the <RequestMap> and <Host> with an applicationId attribute DO work, but <Path> and <Query> DO NOT work. According to the documentation, they are supposed to (https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPRequestMapQuery) at "Content Settings": "XML attributes corresponding to request mapper properties are used".
<Path name="Login.aspx" authType="shibboleth" requireSession="false">
<Query name="entityID" regex="^mujina\.reqtest\.local$" applicationId="mujina"/>
<Query name="entityID" regex="^https://idp\.testshib\.org/idpshibboleth$" applicationId="testShib" />
We are using Windows server 2008 R2, IIS 7 and Jetty 7.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the users