IDENTITY AND ACCESS MANAGEMENT

Extensions to Shibboleth

These are some extensions to Internet2's Shibboleth project.

Note.. these are for Shib 2.x

  1. ePTID generation

    Not really an extension, but this is how we do ePTID generation at UW.


  2. RESTful webservice data connector

    This data connector resolves attributes from a RESTful web service.

    Version 1.0 is for pre-2.3.x versions of the IdP.

  3. Version 1.2 is for 2.3.x versions of the IdP.


  4. RemoteUser Login handler

    This login handler provides support for forced-reauth and 2-factor login for those shib sites that use RemoteUser authentication and an external authenticator that supports the two methods.

    Version 1.7 is for shib version 2.3.0 and higher

    Version 1.3 is for earlier shib 2.1.x


  5. AuthnContext servlet handler

    This servlet handler allows the IdP, based on a resolved attribute's value, accept or reject a requested AuthnContext ClassReference. -- and it puts the class reference in the response header.

    Version 1.1 is for shib version 2.2.0

    Version 1.0 is for earlier shib 2.x


  6. ECP request handler

    The ECP request handler is now part of the Shibboleth distribution.


Topics


Jim Fox
UW Technology
Identity and Access Management
University of Washington
fox@washington.edu

© 1983-2017, University of Washington