Qestion about service provider
cantor.2 at osu.edu
Wed Dec 11 10:16:24 EST 2019
On 12/11/19, 8:26 AM, "users on behalf of Yaroslav Nakonechnikov" <users-bounces at shibboleth.net on behalf of psychozoic at gmail.com> wrote:
> so, i would like to know - what client version library is used in new Shibboleth-sp? Does it support TLS connection to
The libraries used are whatever people build it with, and the only one we have any exposure to as a project is whatever Red Hat has included, I think it was called libmemcache. And I believe they no longer include it on RH8.
I doubt it would allow TLS without additional configuration we don't expose (and if it did you shouldn't trust it), unless it has some way to control trust material based on environment or OS level configuration.
As a project, there's really de facto no support for this at this point, and I regretted ever including it due to the lack of ownership of that code by anybody working directly with the project. I should have moved it into the unsupported state for 3.0 officially as "provided as-is but not supported".
More information about the users