OpenAthens doppelgänger ?
IAM David Bantz
dabantz at alaska.edu
Fri Dec 3 22:27:27 UTC 2021
I haven’t been paying enough attention to OpenAthens. I just realized there
is an OpenAthens federated identity provider from a for-profit organization
with an entity ID and scope referring to my institution. That seems to mean
that consumers of information from the OpenAthens IdP may conclude,
informally from the entity ID, and more correctly based on the scope, that
the assertion is about a member of my institution. As I say, I haven’t paid
enough attention to OpenAthens, so maybe I need some ’splaining, but this
seems to me wrong on many levels. Is it? How concerned should I be?
<md:EntityDescriptor … entityID="https://idp.alaska.edu/openathens”>
…<shibmd:Scope regexp=“false">alaska.edu</shibmd:Scope>
<EntityDescriptor … entityID="urn:mace:incommon:alaska.edu">
… <shibmd:Scope regexp="false">alaska.edu</shibmd:Scope>
David St. Pierre Bantz
University of Alaska (alaska.edu !)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20211203/66e659fd/attachment.htm>
More information about the users
mailing list