Attribute resolution fails for directAuthenticator strategy

Zoltan JANOTA zoltan.janota at
Tue Dec 22 09:51:32 EST 2015

Thanks, Scott!

Any hints on how the attribute resolution could be extended to use the
context which was created during the bind?


From:       "Cantor, Scott" <cantor.2 at>
To:         Shib Users <users at>
Date:       22/12/2015 15:39
Subject:    Re: Attribute resolution fails for directAuthenticator strategy
Sent by:    "users" <users-bounces at>

On 12/22/15, 9:37 AM, "users on behalf of Zoltan JANOTA"
<users-bounces at on behalf of zoltan.janota at> wrote:

>I am trying to configure both the authentication and attribute retrieval
using the credentials provided by the user. According to the docs, this
should be possible using the directAuthenticator strategy.

For authentication perhaps, definitely not attributes. Not even possible in
general, though under very constrained conditions it could be done. But I
don't believe we have ever supported that and certainly that isn't part of
the resolver configuration.

-- Scott

To unsubscribe from this list send an email to
users-unsubscribe at

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: graycol.gif
Type: image/gif
Size: 105 bytes
Desc: not available
URL: <>

More information about the users mailing list