projects / devwiki.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
(no commit message)
[devwiki.git] / testing / shibboleth.mdwn
diff --git a/testing/shibboleth.mdwn b/testing/shibboleth.mdwn
index 5a922f0..a2093bd 100644 (file)
--- a/testing/shibboleth.mdwn
+++ b/testing/shibboleth.mdwn
@@ -1,10 +1,16 @@
+Most effort focused on the existing SAML attribute support rather than the GSS extractor. 
+
+Copy the dictionary.ukerna file from mech_eap to /usr/share/freeradius, and edit /usr/share/freeradius/dictionary to include that dictionary file.
+
 Testing sample assertion added to /etc/freeradius/sites-available/default
 
        update reply {
                SAML-AAA-Assertion = '<saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" IssueInstant="2011-03-19T08:30:00Z" ID="foo" Version="2.0">'
                SAML-AAA-Assertion += '<saml:Issuer>urn:mace:incommon:osu.edu</saml:Issuer>'
                SAML-AAA-Assertion += '<saml:AttributeStatement>'
-               SAML-AAA-Assertion += '<saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"><saml:AttributeValue>cantor.2@osu.edu</saml:AttributeValue></saml:Attribute>'
+               SAML-AAA-Assertion += '<saml:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"><saml:AttributeValue>cantor.2@osu.edu</saml:AttributeValue></saml:Attribute>'
                SAML-AAA-Assertion += '</saml:AttributeStatement>'
                SAML-AAA-Assertion += '</saml:Assertion>'
        }
+
+Confirmed SAML attributes are available from GSS naming extensions as of 482459a9
Unnamed repository; edit this file 'description' to name the repository.