Inserting a webflow via a plugin JAR

[dqluan]

Dear Shib Community,



I'm trying to integrate a flow via a plugin jar, like suggested here
https://wiki.shibboleth.net/confluence/display/IDP30/SpringConfiguration#SpringConfiguration-SpringWebFlow
.



I need this webflow to be run post-authn, and depending on some user input,
determine whether to redirect on to the SP, or to cancel the session and
forward to another site.



My plugin already works as a standalone WAR on Tomcat, but I couldn't
integrate it as a Shib3 plugin JAR… Really grateful if the community could
offer some pointers on whether I'm on the right track.



What I did so far:

   1. Put the JAR into ${idp.home}/edit-webapp/WEB-INF/lib/
      1. If I have folders for jsp, css, js, images, can I stuff them into
      the jar file too? Or do I have to put them outside in
      ${idp.home}/edit-webapp/WEB-INF?
   2. Put the flow definition file into
   ${idp.home}/edit-webapp/META-INF/net/shibboleth/idp/flows/authn/MYFLOW/MYFLOW-flow.xml
   3. Declare the flow to Shib3 by putting <bean id="authn/MYFLOW"
   parent="shibboleth.InterceptFlow" /> into
   conf/intercept/profile-intercept.xml
   4. Enable the flow by putting <bean parent="SAML2.SSO"
   p:postAuthenticationFlows="authn/MYFLOW" /> into /conf/relying-party.xml
   5. Rebuild the Shib3 WAR by running ${idp.home}/bin/build.sh



=> I tried this but got this error in the log: ERROR
[net.shibboleth.idp.profile.interceptor:-2] - Uncaught runtime exception

org.springframework.webflow.definition.registry.NoSuchFlowDefinitionException:
No flow definition 'intercept/MYFLOW' found



Should I have done something different? Say putting the
"META-INF/net/.../MYFLOW-flow.xml" file into the JAR instead?


Thanks!



Thomas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20171016/3b9931ba/attachment.html>