Perl 6 - the future is here, just unevenly distributed

IRC log for #shibboleth, 2017-08-23

| Channels | #shibboleth index | Today | | Search | Google Search | Plain-Text | summary

All times shown according to UTC.

Time Nick Message
00:04 pdurbin yeah
00:13 karstensrage ok thats good
00:13 karstensrage not very many people here
00:14 karstensrage are there more popular solutions?
00:14 karstensrage ADFS? Ping Identity
00:14 pdurbin OAuth
00:14 karstensrage OAuth is not a SAML IDP is it?
00:15 pdurbin nope
00:15 karstensrage well heres my basic conundrum
00:15 karstensrage i want to run my own IdP multitenant
00:16 karstensrage i and i need to heavily customize the login to use a service
00:16 karstensrage is shibboleth a good framework for that?
00:17 karstensrage im glad you mentioned oauth, i hate oauth and openid
00:19 pdurbin To use a service? Which service?
00:19 karstensrage my service
00:20 karstensrage its hipster, you probably havent heard of it :P
00:20 pdurbin Your service needs to allow login/auth against your multitenant IdP.
00:20 karstensrage no
00:20 karstensrage the IDP does the login right?
00:20 karstensrage username/password or LDAP or something?
00:21 pdurbin yep
00:21 karstensrage so the or something
00:21 karstensrage is my service
00:23 pdurbin Your IdP is the service. Ok. I thought your service was the webapp or whatever.
00:23 pdurbin You could use LDAP if you want, I guess. :)
00:23 karstensrage no the IDP is shibboleth, it just uses the service like it would use LDAP but the UI has to be a little bit customizeable for the user and the multitenant
00:24 karstensrage and it has to call the service instead of an LDAP server for example
00:24 pdurbin Does https://www.shibboleth.net/products/embedded-discovery-service/ help?
00:25 karstensrage dont think so
00:25 pdurbin ok
00:26 karstensrage what does shibboleth call LDAP or Acitvedirectory
00:26 karstensrage or the db of username/passwords
00:27 pdurbin I'm not sure. I only use the SP side of Shibboleth. But I hear you can hook the IdP up to LDAP and all sorts of other things.
00:27 karstensrage oh ok
00:27 karstensrage so i need to know how to hook the IdP to one sort of other thing
00:28 karstensrage and if it can be made multitenant
00:30 pdurbin I've had good luck posting questions like this to https://shibboleth.net/mailman/listinfo/users
00:33 karstensrage alright thanks pdurbin
00:33 karstensrage i assume you dont want to spend money on ADFS or Ping so you use shibboleth?
00:34 karstensrage oh rather you dont want to roll your own SP with Spring Security SAML for instance
00:34 pdurbin I work on an open source product so all the components need to be free and open source.
00:47 pdurbin I looked at Spring Security SAML but I was advised that if I try to incorporate it into our Java EE application that we'd have to switch a lot of components over to Spring.
00:49 karstensrage yeah
00:49 karstensrage i use spring anyway so its a no brainer
00:52 pdurbin ah
00:56 karstensrage do you mind telling the open source product?
00:57 karstensrage is it apache storm or shiro?
00:58 pdurbin The product I work on is called Dataverse: https://github.com/IQSS/dataverse
01:41 karstensrage interesting
01:41 karstensrage thanks for sharing
01:52 ilbot3 joined ##shibboleth
02:04 pdurbin Sure. I've written a fair amount about Shibboleth here if you're interested: http://guides.dataverse.org/en/4.7.1/installation/shibboleth.html
05:03 discopatrick joined ##shibboleth
08:52 skawa joined ##shibboleth
12:14 discopatrick joined ##shibboleth

| Channels | #shibboleth index | Today | | Search | Google Search | Plain-Text | summary