[Tf-aai] Practical improvement to be made to SAML metadata processing/monitoring for SPF, increasing robustness
Oliver Schonefeld
schonefeld at ids-mannheim.de
Tue Oct 20 15:08:48 CEST 2015
Hi Sander,
Am 20.10.2015 um 14:28 schrieb Dieter Van Uytvanck:
> On 20/10/15 14:18, Sander Maijers wrote:
>
>> What do you think of automatic fetching of SAML metadata from the
>> SAML metadata generator endpoint of production SPs (e.g.
>> https://ekrksso.keeleressursid.ee/simplesaml/module.php/saml/sp/metadata.php/ekrk-sp
>> or https://clarin.oeaw.ac.at/Shibboleth.sso/Metadata), and
>> automatically importing each SP's EntityDescriptor into the SAML
>> metadata batch about SPF SPs in our SVN?
>
> Hi Sander,
>
> how would this affect the manually post-edited entries (like the
> CoC-link that is added)? Or do you foresee some smart merging between
> the pure technical snippets automatically generated by the SP and the
> full enriched SAML entries, as currently available in our SVN?
Right, also parts like contact addresses, descriptions, mdui extensions,
etc. are not part of the automatically generated metadata.
So, we would need to find a way to add those to the generated metadata
(up to now, I've failed to find a mechanism in the Shibboleth SP
software) or need to automatically (and in a robust manner) merge them
with hand-edited stuff in the SVN.
Best,
Oliver
--
Oliver Schonefeld
Institut für Deutsche Sprache, Zentrale Forschung
R5, 6-13, D-68161 Mannheim
+49-(0)621-1581-451 | http://www.ids-mannheim.de
More information about the Tf-aai
mailing list