Shibboleth

Name

Shibboleth Handler

Description

Shibboleth is a widely-adopted identity management system that uses the security assertion markup language (SAML). Apidapter can support the creation of adapters for both Shibboleth and SAML, with both requiring similar information (allows for single sign-on integration using the Shibboleth specification). This is achieved by allowing an adapter to act as a Service Provider (SP). When an adapter uses a Shibboleth request handler, the adapter will produce the metadata required for the Identity Provider (IdP) to successfully configure the SP.

When a response is successfully validated, the authenticated username is placed in the "NameID" parameter.

Fields

NameID format: The format of Name ID to request from the IdP.

SP entity ID: An identifier for this service provider. This should follow the guidelines in the Shibboleth documentation.

IdP entity ID: The identifier of the IdP with which the SP will interact.

Single sign on service URL: URL provided by IdP to support single sign on via the HTTP-Redirect binding.

SP private key: The key used to sign SAML requests.

IdP x509 certificate: The certificate used to decrypt responses from the IdP.

shibboleth.JPG

Examples

Enabling SSO for a custom web application.

Errors

Handler will error if:

  1. The server is unavailable. This can happen due to downtime, firewall configuration, network issues, or an incorrect server URL.
Have more questions? Submit a request

0 Comments

Article is closed for comments.
Powered by Zendesk