Re: [Bodington-developers] Testing SP : groups-xml-mapper-policy

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Interesting question and the answer I suspect depends on the answer  
to this one:

I logged in to Bod1 using Bod2 as an IdP. I logged in as sysadmin on  
Bod2's IdP and got into Bod1 using the shibb authenticator but wasn't  
made a sysadmin. I was put into the sysadmins group as  
sys...@ww....

I also logged in as a student from Bod2 but the group mapping didn't  
result in a new group being created.

So some questions:

1) How did it know to put sys...@ww... into the  
Bod1 sysadmins group when my mapper file was called dev.clan.uhi.ac.uk?
2) If the concept of sysadmin doesn't translate between bods then  
we'll need a local auth option.
3) Are groups created on the fly?

Come to think of it, 3) is  daft question. Of course they aren't. No  
point creating a new group as it won't have access to anything. So  
the mapper refers to existing groups in the bod sp. Answered my  
question!

Nice work though Atif. The shibb login works a treat!

Alistair

On 29 Jun 2006, at 13:46, Matthew Buckett wrote:

> Atif Suleman wrote:
>> Alistair Young wrote:
>>
>>> can you explain how the sp works Atif? I've done all that now but  
>>> how do I
>>> actually log in using shibboleth? Is there a special shibboleth  
>>> login page
>>> in bod now?
>>>
>>>
>>>
>> There is no special shibboleth login page. Because of the following
>> filter mapping in web.xml
>>
>> <filter-mapping>
>>     <filter-name>Guanxi Resource Guard</filter-name>
>>          <url-pattern>/site/*</url-pattern>
>> </filter-mapping>
>>
>> The entire bodington is protected.
>
> Is it possible to set it up to allow both shibb and another
> authentication mechanism to work at the same time?
>
> -- 
>   -- Matthew Buckett, VLE Developer
>   -- Learning Technologies Group, Oxford University Computing Services
>   -- Tel: +44 (0)1865 283660 http://www.oucs.ox.ac.uk/ltg/
>
> Using Tomcat but need to do more? Need to support web services,  
> security?
> Get stuff done quickly with pre-integrated technology to make your  
> job easier
> Download IBM WebSphere Application Server v.1.0.1 based on Apache  
> Geronimo
> http://sel.as-us.falkag.net/sel? 
> cmd=lnk&kid=120709&bid=263057&dat=121642
> _______________________________________________
> Bodington-developers mailing list
> Bod...@li...
> https://lists.sourceforge.net/lists/listinfo/bodington-developers