Help setting up shibboelth 2.5.4 sp with shared session db

Ewing, Bill BEwing at utsystem.edu
Thu Aug 27 13:51:06 EDT 2015 

We are making progress with the database setup but had to tweak the settings some.
Forwarding from the dba assisting us 
"The documentation says that 3 of the columns on strings table should have length of 255, but the log is showing that its trying to insert 4000 character length...so I went ahead and increased to 4000.  The problem is I had to remove the primary key on strings based on two of those fields because it surpasses the max length of a primary key....well, not necessarily a problem...not sure what shib needs the primary key for as there is no defined relationships between the other tables"

 After that are running into an issue when shibd is starting the sessioncache into the database. After login the database starts getting entries written to it then shibd crashes. After setting logs to debug I see this in the logs. I truncated the statement unless its helpful to paste the whole thing?

2015-08-27 11:29:11 DEBUG Shibboleth.SessionCache [2]: storing new session...
2015-08-27 11:29:11 DEBUG XMLTooling.StorageService [2]: SQLPrepare succeeded. SQL: INSERT INTO texts VALUES (?,?,{ts '2015-08-27 17:29:11'},1,?)
2015-08-27 11:29:11 DEBUG XMLTooling.StorageService [2]: SQLBindParam succeeded (context = _fa48ea3b824a62aa37ef861972874576)
2015-08-27 11:29:11 DEBUG XMLTooling.StorageService [2]: SQLBindParam succeeded (key = session)
2015-08-27 11:29:11 DEBUG XMLTooling.StorageService [2]: SQLBindParam succeeded (value = <wddxPacket version="1.0" lowercase="no"><header/><data><struct name="_fa48ea3b824a62aa37ef861972874576"><var name="version"><number>1</number></var><var name="application_id"><string>default</string></var><var name="expires"><string>2015-08-28T00:29:11Z</string></var><var name="client_addr"><struct><var name="4"><string>198.147.139.180</string></var></struct></var><var name="entity_id"><string>https://idp.utsystem.edu/idp/shibboleth</string>.......

So it looks like shib is crashing before or during the insert statement into the texts table since there are no rows in that table in the database (shib does insert rows into strings table by this point).  So I pulled the information from the debug and tried to insert through the unixODBC sql tool and it succeeds without a problem.

Are we running into some of the bugs you mentioned with odbc drivers or might there be something else were missing?

Thanks,
Bill

-----Original Message-----
From: users [mailto:users-bounces at shibboleth.net] On Behalf Of Cantor, Scott
Sent: Wednesday, August 26, 2015 9:50 AM
To: Shib Users <users at shibboleth.net>
Subject: Re: Help setting up shibboelth 2.5.4 sp with shared session db

On 8/26/15, 10:47 AM, "users on behalf of Ewing, Bill" <users-bounces at shibboleth.net on behalf of BEwing at utsystem.edu> wrote:

>This is an atypical setup for us for a development peoplesoft environement that has 3 nodes a portal/HR/Fin node that we want to share a shib session. There are multiple entry points one from each of the nodes so we want to let them bounce btw each in that environment but then if they goto a different environment say test or sandbox we would want them to be forced to re-auth and create a new session for that environment.

Well, I guess, but unless the applications themselves are actually sharing state that depends on the SP, letting SSO take its course is usually just as simple. Users aren't going to see anything different.

-- Scott

-- 
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

More information about the users mailing list