Limit to the number of Vhosts under one entityID?
Barry Johnson
CYCLIST at clemson.edu
Mon Nov 24 07:02:06 EST 2014
Thanks Peter!
Sent from my iPad
> On Nov 24, 2014, at 5:45 AM, Peter Schober <peter.schober at univie.ac.at> wrote:
>
> * Barry Johnson <CYCLIST at clemson.edu> [2014-11-21 16:22]:
>> Does anyone know if there is an upper limit to how many distinct
>> virtual hosts can be supported under one entityID? Assuming we add
>> the appropriate ACS endpoints to the metadata could an SP
>> theoretically support hundreds of virtual hosts?
>
> Univie has more than 1300 Shib-enabled vhosts in their mass-hosting
> web environment (one ACS URL for every TLS-enabled vhost; there also
> are non-TLS vhosts), most on a single entityID, IIRC.
> So far no issues with that, AFAIK, but I'm not involved with that
> anymore.
>
> Univie also used signed requests instead of ACS URL checking with a
> single campus SP, but that was only as a workaround since the non-Shib
> SP implementation was broken and generated dynamic ACS URLs in its
> authn request, mis-using unique ACS URLs to track relay state, or
> something like that. Not sure that SP is still being used.
> -peter
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list