Metadata expiry and computing a new expiration time.

Simon Fraser srf at sanger.ac.uk
Fri Sep 18 05:36:34 EDT 2015



On 18/09/15 10:27, Peter Schober wrote:
>> what happens when there isn't a new version within 14 days?
>
> The locally cached metadata will expire and all entities in there will
> become unkown to the IDP, i.e., it will lose everything in there.
>
> That protects you from potentially "revoked" entities (you don't hold
> on to entities that may have been removed meanwhile), at the price of
> the federation operator having to constantly re-sign and re-publish
> metadata.
> https://wiki.shibboleth.net/confluence/display/CONCEPT/TrustManagement
> -peter

Ah, ok, if it's a deliberate choice, then that's ok.

Simon.



-- 
 The Wellcome Trust Sanger Institute is operated by Genome Research 
 Limited, a charity registered in England with number 1021457 and a 
 company registered in England with number 2742969, whose registered 
 office is 215 Euston Road, London, NW1 2BE. 


More information about the users mailing list