users Digest, Vol 134, Issue 7

Gellweiler, Jan jan.gellweiler at tu-dortmund.de
Sun Aug 7 13:55:57 UTC 2022 

Am 07.08.2022 14:00 schrieb users-request at shibboleth.net:
Send users mailing list submissions to
        users at shibboleth.net

To subscribe or unsubscribe via the World Wide Web, visit
        https://shibboleth.net/mailman/listinfo/users
or, via email, send a message with subject or body 'help' to
        users-request at shibboleth.net

You can reach the person managing the list at
        users-owner at shibboleth.net

When replying, please edit your Subject line so it is more specific
than "Re: Contents of users digest..."


Today's Topics:

   1. Re: custom nameid formats and metadata-driven config (Les LaCroix)
   2. Shib SP's MetadataProvider is not downloading last metadata
      xml from given url (Kumar, Prasanth (ELS-LON))
   3. RE: Shib SP's MetadataProvider is not downloading last
      metadata xml from given url (Rod Widdowson)


----------------------------------------------------------------------

Message: 1
Date: Sat, 6 Aug 2022 11:45:27 -0500
From: Les LaCroix <llacroix at carleton.edu>
To: Shib Users <users at shibboleth.net>
Subject: Re: custom nameid formats and metadata-driven config
Message-ID:
        <CA+0uUd_QemdH5YfcQ26bVW4CMoNmH9Cpwx2kt4t7R=N7f+LZ7g at mail.gmail.com>
Content-Type: text/plain; charset="utf-8"

On Fri, Aug 5, 2022 at 8:27 AM Cantor, Scott via users <users at shibboleth.net>
wrote:


> But the "full" fix is simply to undo the bad idea... All I can really do
> is add a warning somewhere mentioning that pretty much by definition you
> don't want many settings attached to the default profiles.
>
> -- Scott


I can suggest two places to consider putting the warning about the bad
idea, and maybe a brief explanation of why it's bad.

1. In the example "Changing Profile Defaults" in
https://shibboleth.atlassian.net/wiki/spaces/IDP4/pages/1265631678/RelyingPartyConfiguration
.  The example seems to be a slightly different way of doing exactly what
we did, albeit with a different precedence list.  (Granted, I might be
misunderstanding, which is a common theme in this thread.)  The description
of the example almost makes it sound like it's a good idea, not a bad one.

2. In the distributed version of relying-party.xml, in the comments right
before the default relying party bean.

-Les

<http://www.carleton.edu/>

*Les LaCroix '79*

Strategic Technologist

Information Technology Services

t: (507) 222-5455

>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20220806/350a8241/attachment-0001.htm>

------------------------------

Message: 2
Date: Sat, 6 Aug 2022 22:09:06 +0000
From: "Kumar, Prasanth (ELS-LON)" <p.kumar.13 at elsevier.com>
To: "users at shibboleth.net" <users at shibboleth.net>
Subject: Shib SP's MetadataProvider is not downloading last metadata
        xml from given url
Message-ID:
        <CO1PR08MB67536D6481C4764053FE81BBB0619 at CO1PR08MB6753.namprd08.prod.outlook.com>

Content-Type: text/plain; charset="us-ascii"

Hi,

In SHIB SP we have configured MetadataProvider with backingFilePath and url.
When access this federation metadata url in browser I can see the changes in metadata xml, but SHIB SP MetadataProvider is not able to identify the changes and it says "unchanged from cached version" then ignoring to update the latest metadata.
Could someone help me to understand how Shib SP's MetadataProvider is doing comparison and says metadata xml is unchanged?

Thanks,
Prasanth K
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20220806/a96513cd/attachment-0001.htm>

------------------------------

Message: 3
Date: Sun, 7 Aug 2022 10:26:34 +0100
From: "Rod Widdowson" <rdw at steadingsoftware.com>
To: "'Shib Users'" <users at shibboleth.net>
Subject: RE: Shib SP's MetadataProvider is not downloading last
        metadata xml from given url
Message-ID: <000301d8aa3f$c98dbac0$5ca93040$@steadingsoftware.com>
Content-Type: text/plain;       charset="us-ascii"

> Could someone help me to understand how Shib SP's MetadataProvider is doing comparison and says metadata xml is unchanged?

My first suggestion would be to check the ETags.

/Rod



------------------------------

Subject: Digest Footer

--
For Consortium Member technical support, see https://wiki.shibboleth.net/confluence/x/coFAAg
To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net


------------------------------

End of users Digest, Vol 134, Issue 7
*************************************

Wichtiger Hinweis: Die Information in dieser E-Mail ist vertraulich. Sie ist ausschlie?lich f?r den Adressaten bestimmt. Sollten Sie nicht der f?r diese E-Mail bestimmte Adressat sein, unterrichten Sie bitte den Absender und vernichten Sie diese Mail. Vielen Dank.
Unbeschadet der Korrespondenz per E-Mail, sind unsere Erkl?rungen ausschlie?lich final rechtsverbindlich, wenn sie in herk?mmlicher Schriftform (mit eigenh?ndiger Unterschrift) oder durch ?bermittlung eines solchen Schriftst?cks per Telefax erfolgen.

Important note: The information included in this e-mail is confidential. It is solely intended for the recipient. If you are not the intended recipient of this e-mail please contact the sender and delete this message. Thank you. Without prejudice of e-mail correspondence, our statements are only legally binding when they are made in the conventional written form (with personal signature) or when such documents are sent by fax.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20220807/11abb036/attachment.htm>

More information about the users mailing list