[higgins-dev] Question about higgins SAML interoperability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[higgins-dev] Question about higgins SAML interoperability

From: Stefano Gargiulo <rastrano@xxxxxxxxx>
Date: Thu, 12 Aug 2010 09:54:34 +0200
Delivered-to: higgins-dev@xxxxxxxxxxx
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type; b=AMgPBwHQChqYWUHs7LdjYLgZ8JeSvVVLXk5xlp2ot+ZZ8SmUD+fKD5XfigSQNwEt+U EQbjVujuwGGdJltJ6xOZBE42ZKRP6MSLAY2T0s/IDZRilCretHpKUmkY3asYcUiF0PFq VyAYURm5gMkbnamhOZfQQcP2E/QwRbX7cRF54=
List-archive: <https://dev.eclipse.org/mailman/private/higgins-dev>
List-help: <mailto:higgins-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/higgins-dev>, <mailto:higgins-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/listinfo/higgins-dev>, <mailto:higgins-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; it; rv:1.9.2.8) Gecko/20100802 Thunderbird/3.1.2

- does it support SAML federation metadata in xml? i just read this: Configure the SAML2 RP The saml2idp.test web application project contains the following files in the WebContent/conf folder: ...omississ... idp/cacert.pem: This is the matching certificate (including a public key) for the private key of the IdP. It is used to verify XML Signatures in SAML 2.0 messages received from the IdP. The file is expected to have a X509 structure and be in PEM (ascii) format.So i suppose that higgins SP can trust just one IdP, and discovery service protocol is not supported i'm right? And the IdP: rp/*.pem: Every file ending in ".pem" in the rp/ subdirectory is considered to be a matching certificate (including a public key) for the private key of an RP, from which requests should be accepted. It is used to verify XML Signatures in SAML 2.0 messages received from RPs. The file is expected to have a X509 structure and be in PEM (ascii) format.but where i can put the endpoints of all the services? or is it supposed to interoperate just with Higgins RP? Pratically my question is: can i interoperate higgins idp and sp with a federation metadata like this: https://www.idem.garr.it/docs/conf/idem-test-metadata.xml ? Best regards, Stefano.

Hi all,

I'm sorry: i don't know if i can ask things like this in this mailing list but i didn't found any higgins-users ML.

First of all congraturations: I discovered this awesome project today! I come from Shibboleth, simpleSAMLphp, and OpenSSO (but now I'm implementing a new SSO federation, so i just looked around for news)

I like very much the innovative idea behind Higgins, so i want to try it, but i've to be care because in the future my new SSO federation will need to interoperate with a bigger one that's strongly based on Shibboleth (IDEM, the italian educational federation) so before starting i've two questions, one concerning the IdP and one for the Java RP:

1) Can the SAML2 IdP fully interoperate with Shibboleth and SimpleSAMLphp SP? (we call SP, Service Provider, what you call RP)?

Does it support federation metadata in xml format?

Does it support attribute query profile?

Single Logout Request?

Attribute Aggregation (can it be an AtrributeAuthority?) etc?

Or simply please tell me any know lack into the SAML IdP implementation...

2) Does the Java RP includes an interoperable SAML implementation? (i can't understand this in the official website)

Best regards,

Stefano.

Follow-Ups:
- Re: [higgins-dev] Question about higgins SAML interoperability
  - From: John Bradley

Prev by Date: [higgins-dev] Question about higgins SAML interoperability
Next by Date: Re: [higgins-dev] Question about higgins SAML interoperability
Previous by thread: [higgins-dev] Question about higgins SAML interoperability
Next by thread: Re: [higgins-dev] Question about higgins SAML interoperability
Index(es):
- Date
- Thread

Breadcrumbs

Configure the SAML2 RP