Jetty + REMOTE_USER

Matthew Slowe m.slowe at kent.ac.uk
Thu Sep 10 08:35:47 EDT 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Afternoon all,

I've been doing some preparatory work to upgrade our v2 IDP to v3 and to
start with I've been trying to make the v2 IDP work with Jetty9 via
mod_proxy (currently running Tomcat6 via ajp) behind Apache.

I've mostly got it working however despite following the "Offloading
TLS" instructions [1], I can't persuade the IDP to pick up
the REMOTE[-_]USER header passed back by mod_proxy (I can see it going
on a tcpdump -A).

In Tomcat land I would have set the tomcatAuth=false but can't see what
to do with Jetty instead.

What do I need to do to make this work? 

Would it be better to just run with the v3 IDP instead?

Ta,

[1] https://wiki.shibboleth.net/confluence/display/IDP30/Jetty93#Jetty93-OffloadingTLS
- -- 
Matthew Slowe | Server Infrastructure Officer
IT Infrastructure, Information Services, University of Kent
Room S21, Cornwallis South
Canterbury, Kent, CT2 7NZ, UK
Tel: +44 (0)1227 824265 

www.kent.ac.uk/is | @UnikentUnseenIT | @UKCLibraryIt
PGP: https://keybase.io/fooflington
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEARECAAYFAlXxeSMACgkQ/V1qDCaTXgf9MwCgwDdRBwDaRdtPjPUOgn5+c1Jv
PpoAoMLiFwhtmozf9EGlZNpkuwqMdKE1
=y7os
-----END PGP SIGNATURE-----


More information about the users mailing list