Antw: RE: SP doesn't forward variables

Samsamoddin Rajaei Samsamoddin.Rajaei at bsb-muenchen.de
Wed Oct 19 11:44:40 UTC 2022 

Hi Robert,
Yes. 
Aren't the attributes in transaction.log (see blow) mapped attributes?
Here part of attribute-map.xml:

    <Attribute name="urn:mace:dir:attribute-def:eduPersonEntitlement"
id="entitlement"/>
    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7"
id="entitlement"/>

IDP sends "eduPersonEntitlement".

Sam
>>> "Hoorn, R. van der (Robbert) via users" <users at shibboleth.net>
19.10.2022 12:19 >>>
Did you configure your attribute mappings?
 
Met vriendelijke groet,
Robbert van der Hoorn
Medewerker IDP/Ident
tel.  06 107 659 87

 
Van: users <users-bounces at shibboleth.net> Namens Samsamoddin Rajaei
Verzonden: woensdag 19 oktober 2022 11:39
Aan: users at shibboleth.net
Onderwerp: SP doesn't forward variables
 
Hello everybody,
 
I am trying to connect our Vufind application with Shibboleth SP and
can not get SP to forward environement variables back to Vufind.
When in Vufind application I click the login link, I will be forwarded
to the configured federation and then to our test-idp. After entering my
credentials I will be forwarded back to my configured
"sessionHook"-Page, where I output the phpinfo.
 
In SP transaction log file I see following entries: 
New session (ID: _804ca556ed17194f42e849338182672f) with
(applicationId: historicumtest) for principal from (IdP: ...) at
(ClientAddress: ...) with (NameIdentifier: none) using (Protocol:
urn:oasis:names:tc:SAML:2.0:protocol) from (AssertionID:
_96593f1b531e459c466f3cf6702acb80) 
Cached the following attributes with session (ID:
_804ca556ed17194f42e849338182672f) for (applicationId: historicumtest)
{
    uid (1 values)    
 targeted-id (1 values)    
 affiliation (1 values)    
 entitlement (1 values)  
}
In phpinfo I can see different Shibboleth cookies among others the
session cookie with the same id as in log file ( _shibsession_nnn=ID).
But I don't see any of shibboleth statndard apache environement
variables, like Shib-Application-ID and Shib-Identity-Provider nor
anything of uid, targeted-id, affiliation and entitlement.
How can I get uid, targeted-id ,... forwarded to my
"sessionHook"-Page?
 
Thank you for any hint.
Sam
Bavarian State library - Munich
Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien
u

niet de geadresseerde bent of dit bericht abusievelijk aan u is
gezonden,
wordt u verzocht dat aan de afzender te melden en het bericht te
verwijderen.
De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard
ook, die verband houdt met risico's verbonden aan het elektronisch
verzenden van berichten.

This message may contain information that is not intended for you. If
you
are not the addressee or if this message was sent to you by mistake,
you
are requested to inform the sender and delete the message.
The State accepts no liability for damage of any kind resulting from
the
risks inherent in the electronic transmission of messages.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20221019/4a4e4275/attachment.htm>

More information about the users mailing list