Name
Shibboleth Handler
Description
Shibboleth is a widely-adopted identity management system that uses the security assertion markup language (SAML). Apidapter can support the creation of adapters for both Shibboleth and SAML, with both requiring similar information (allows for single sign-on integration using the Shibboleth specification). This is achieved by allowing an adapter to act as a Service Provider (SP). When an adapter uses a Shibboleth request handler, the adapter will produce the metadata required for the Identity Provider (IdP) to successfully configure the SP.
When a response is successfully validated, the authenticated username is placed in the "NameID" parameter.
Fields
NameID format: The format of Name ID to request from the IdP.
SP entity ID: An identifier for this service provider. This should follow the guidelines in the Shibboleth documentation.
IdP entity ID: The identifier of the IdP with which the SP will interact.
Single sign on service URL: URL provided by IdP to support single sign on via the HTTP-Redirect binding.
SP private key: The key used to sign SAML requests.
IdP x509 certificate: The certificate used to decrypt responses from the IdP.
Examples
Enabling SSO for a custom web application.
Errors
Handler will error if:
- The server is unavailable. This can happen due to downtime, firewall configuration, network issues, or an incorrect server URL.
0 Comments