Question about shibboleth.ClientPersistentStorageService

Mathew, Sunil smathew at hbs.edu
Tue Oct 11 19:13:18 UTC 2022 

Hi Scott,

I switched to JDBCStorageService and still the same behavior.


2022-10-11 15:07:18,852 - 10.227.147.184 - DEBUG [org.opensaml.storage.impl.client.PopulateClientStorageLoadContext:118] - Profile Action PopulateClientStorageLoadContext: ClientStorageServices requiring load: [shibboleth.ClientSessionStorageService, shibboleth.ClientPersistentStorageService]


2022-10-11 15:07:37,019 - 10.227.147.184 - DEBUG [org.opensaml.storage.impl.client.LogLocalStorageSaveResults:81] - Profile Action LogLocalStorageSaveResults: Save to local storage for StorageService 'shibboleth.ClientPersistentStorageService' succeeded


vi /opt/shibboleth-idp/conf/global.xml


<!-- DB-independent Configuration -->



<bean id="shibboleth.JPAStorageService"

      parent="shibboleth.JDBCStorageService"

      p:cleanupInterval="%{idp.storage.cleanupInterval:PT10M}"

      p:dataSource-ref="shibboleth.JPAStorageService.DataSource"/>



<!-- DB-dependent Configuration -->



    <bean id="shibboleth.JPAStorageService.DataSource"

       class="com.zaxxer.hikari.HikariDataSource" destroy-method="close" lazy-init="true"

       p:driverClassName="com.mysql.jdbc.Driver"

       p:jdbcUrl="jdbc:mysql://localhost:3306/storageservice"

       p:username="root"

       p:password="tiger" />



    <bean id="JDBCStorageService" parent="shibboleth.JDBCStorageService"

          p:dataSource-ref="shibboleth.JPAStorageService.DataSource"

          p:transactionIsolation="4"

          p:retryableErrors="40001"

     />



MariaDB [mysql]> select * from storageservice.StorageRecords;

Empty set (0.000 sec)



Regards,
Sunil

From: Cantor, Scott <cantor.2 at osu.edu>
Date: Tuesday, October 11, 2022 at 1:41 PM
To: Mathew, Sunil <smathew at hbs.edu>, Shib Users <users at shibboleth.net>
Subject: Re: Question about shibboleth.ClientPersistentStorageService
On 10/11/22, 1:35 PM, "Mathew, Sunil" <smathew at hbs.edu> wrote:

>    To be clear, I want to replace ClientSessionStorageService with a
> database-backed storage service to store session cookies. Let me know if
> you if there is one that can do that.

I think that's a very, very bad idea, but that's in the wiki.

https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fshibboleth.atlassian.net%2Fwiki%2Fspaces%2FIDPPLUGINS%2Fpages%2F2989096970%2FJDBCStorageService&data=05%7C01%7Csmathew%40hbs.edu%7Cc8faa51a06d14f03a39408daabafc24b%7C09fd564ebf4243218f2db8e482f8635c%7C0%7C0%7C638011068627635217%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=UGxDxgPPXIIxSSM07%2FH77RSU4oVpC%2FmMFNUkMXPhREo%3D&reserved=0

The original one in the IdP based on Hibernate is deprecated, that's the one to use going forward.

-- Scott

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20221011/e5d2ca0d/attachment.htm>

More information about the users mailing list