Second Office365 Domain requires different "Issuer URI"

Adam Crump Adam.Crump at amkor.com
Fri Oct 13 15:43:43 EDT 2017 

Opps, you are correct here is the complete script
-->    <util:map id="microsoftOnlineRespondersIdMap">
        <entry key="default" value="https://idp.contoso.com/idp/shibboleth/contoso />
        <entry key="contoso " value=" https://idp.contoso.com/idp/shibboleth/contoso.de" />
    </util:map>
<!-- Custome object for the inline script -->
    <util:map id="customObjectsMicrosoftOnlineResponderIdScript">
        <entry key="httpServletRequest" value-ref="shibboleth.HttpServletRequest" />
        <entry key="microsoftOnlineRespondersIdMap" value-ref="microsoftOnlineRespondersIdMap" />
    </util:map>
<!-- responder script.  Look for a url parambeter of morid and check to see if the issuerID should be changed -->
    <bean id="microsoftOnlineResponderIdScript" parent="shibboleth.ContextFunctions.Scripted" factory-method="inlineScript"
        p:customObject-ref="customObjectsMicrosoftOnlineResponderIdScript">
        <constructor-arg>
            <value>
            <![CDATA[
                //by default we always return the default responderId
                responderId = custom.get('microsoftOnlineRespondersIdMap').get('default');
                //check to the existence of the key from the URL to switch the responder
                requestedResponder = custom.httpServletRequest.getParameter('morid');
                if (custom.microsoftOnlineRespondersIdMap.containsKey(requestedResponder)){
                    responderId = custom.microsoftOnlineRespondersIdMap.get(requestedResponder);
                }
                responderId;
            ]]>            
            </value>
        </constructor-arg>
    </bean>


On 10/13/17, 2:26 AM, "users on behalf of Peter Schober" <users-bounces at shibboleth.net on behalf of peter.schober at univie.ac.at> wrote:

    * adam.crump at amkor.com <adam.crump at amkor.com> [2017-10-13 00:51]:
    > I have just stumbled upon this issue myself.  I would like to offer this
    > alternative responderStrategy that can be managed completely in the
    > relying-party.xml using an inline script.
    [...]
    >     <bean id="microsoftOnlineResponderIdScript"
    > parent="shibboleth.ContextFunctions.Scripted" factory-method="inlineScript"
    >         p:customObject-ref="customObjectsMicrosoftOnlineResponderIdScript">
    >         <constructor-arg>
    >             <value>
    >                         
    >             </value>
    >         </constructor-arg>
    >     </bean>
    
    Seems to me there's missing something, e.g. the actual script?
    -peter
    -- 
    To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net

More information about the users mailing list