GSoC08/SAML Holder of Key Authn for HTTP SSO
From Globus
Contents |
SAML Holder-of-Key Authentication for HTTP Single Sign-on in GridShib
Student: Joana Matos Fonseca da Trindade
Mentor: Tom Scavo
This project provides an implementation of a Holder-of-Key Single Sign-On profile handler for the Shibboleth Identity Provider (IdP). With this profile handler, a Shibboleth IdP can issue holder-of-key SAML assertions to properly authenticated web browser users.
For non-browser users, a Java client application (User Agent) that issues SAML authentication requests over HTTP has also been implemented. More details about the project available in the Documents section below.
Documentation
Identity Provider Installation Guides
- How to Install and Configure the Shibboleth 2.0 Identity Provider
- How to Install and Configure the Holder-of-Key SSO Profile Handler
- How to Configure Holder-of-Key SSO Service for the User Agent
User Agent Installation Guides
Demo
Sample Messages
Metadata
Source Code
You can browse the source code with ViewCVS.
You can get the latest source through anonymous CVS:
export CVSROOT=:pserver:anonymous@cvs.globus.org:/home/globdev/CVS/globus-packages cvs login # Holder-of-Key Profile Handler for Shibboleth IdP Maven project cvs checkout gridshib/opensaml2/idp/holderofkey-handler # Java HTTP User Agent Maven project cvs checkout gridshib/opensaml2/idp/useragent
The CVS contains two Maven projects, each containing a Maven build file (pom.xml). To build the source code using Maven, enter the directory containing the build file:
# Profile Handler cd holderofkey-handler mvn clean install
or
# User Agent cd useragent mvn clean install
The resulting files will be in the gridshib-holderofkey/target directory for the profile handler project, and gridshib-useragent/target for the user agent project.
