Menu
I have tried reading the shibboleth wiki but was not able to understand how to integrate shibboleth single sign on in our spring based multiple web-apps. We need a database based authentication , so we should use jaas ? How would it work ? Can someone please detail the steps like something as follows a) Install shibboleth idp b) configure jaas as the service provider etc ?
Any help would be appreciated to point in the right direction
Thanks
349
Shibboleth is an implementation of Security Assertion Markup Language (SAML). SAML gives Shibboleth interoperable SSO capabilities. Using SAML also means individual users in the federation need fewer passwords. And SAML provides better auditability features than traditional SSO solutions.
Shibboleth has been adopted by the University of California as the basis for federated Single Sign-On between the UC campuses. Shibboleth allows one to authenticate using a local institutional service (IdP) to gain access to remote resources and services (SPs).
Shibboleth is a web-based software tool that supports single sign-on (SSO) between two applications or between two organizations. It is an open-source tool and mainly used for Single Sign-On (SSO) using SAML protocol.
Shibboleth is the linchpin that securely authenticates identities within the InCommon Federation. It is a single sign-on (SSO) solution that allows management to make informed authorization decisions in a privacy-preserving manner.
Well Shibboleth architecture is not something you can understand easily and Shibboleth wiki is well... massive. Fortunately there are many good sources of knowledge, you just need to know where to begin.
from Shibboleth wiki the most important is FlowsAndConfig page and of course whole Understanding Shibboleth category
Guys from SWITH made some nice schematics and tutorials on their sites, I found their materials well organised.
Edit: this are really good instructions to understand whole concept easy medium expert I couldn't find it before on SWITCH sites so I post it now.
There are also Guanxi (Java implementation of Shibboleth concepts) presentations with nice schematics
And finally extended shibboleth architecture with some custom modules(unfortunately not in english so I linked translated version)
For Shibboleth IdP installation please refer to wiki it is really easy to do
184
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
