[Ext] RE: Feasible to run pool of v2 and v3 IdP servers?
Nate Klingenstein
nate.klingenstein at utah.edu
Fri May 27 13:31:56 EDT 2016
We're going to do a bit of this as a transition mechanism because... reasons. We can route specific SP's to specific IdP's by inspecting the query string.
We have externalized authentication, but SSO is the smallest concern with the particular integration that inspired the decision.
Semt frim mt iPone
On May 27, 2016, at 11:24, Cantor, Scott <cantor.2 at osu.edu> wrote:
>>> We are working on our Shibboleth IdP v2 to v3 upgrade. Currently, we
>>> have a load-balanced pool of v2 IdP servers. We are thinking to bring up
>>> a new IdP v3 server and then add it to the pool of v2 servers as a first
>>> test. Would that work? Has anyone done that?
>>
>> No, it wouldn't work in any sensible way.
>
> (Modulo just giving up SSO between them of course. The endpoints and public interface are compatible and it would probably not be noticeable to a user apart from just more logins depending on stickiness.)
>
> -- Scott
>
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
More information about the users
mailing list