lohrda at jmu.edu
Tue Jun 9 18:26:13 UTC 2020
I have it configured as a "IdP Initiated" solution.
Now folks want SAML auth for individual surveys, which QP supports. Each
survey has a unique QP url.
I'm looking for another Question Pro .edu customer to see how they did
their configuration and how they handle individual survey SAML auth.
On 6/9/20 2:16 PM, Peter Schober wrote:
> * Lohr, Donald <lohrda at jmu.edu> [2020-06-09 19:54]:
>> Anyone using this SP and have it configured against their Shibboleth 3x IdP?
> I note their docs at
> don't mention any of /their/ metadata (or entityID, endpoints or
> certificate separately). So it's unclear they support encryption, for
> Other than that it looks like the usual lowest-possible-support for
> SAML: Doesn't perform signature validation on remotely loaded metadata
> (making the "IDP metadata URL" method unsafe to use), requires custom
> attribute names, suggests/requires email address as unique user
> identifer in attribute "emailAddress" (NameFormat unkown, I'd use
> basic for correctness), etc.
> The part on how additional user data should be sent from
> I don't understand:
>> All the attributes will be stored in the custom variables in a
>> sequential manner first attribute will go in custom1, second
>> attribute in custom2 and so on. [...]
D o n a l d L o h r
I n f o r m a t i o n S y s t e m s
J a m e s M a d i s o n U n i v e r s i t y
5 4 0 . 5 6 8 . 3 7 3 0
More information about the users