First Last Prev Next    No search results available
Bug 4131 - Author and embed SAML assertions in MyProxy based on non-SAML authentication to MyProxy
: Author and embed SAML assertions in MyProxy based on non-SAML authentication ...
Status: CLOSED FIXED
: GridShib
Roadmap
: unspecified
: PC Linux
: P3 normal
: beta
Assigned To:
:
:
:
: 4134
  Show dependency treegraph
 
Reported: 2006-01-05 14:59 by
Modified: 2009-04-19 08:34 (History)

Attachments
Add an attachment (proposed patch, testcase, etc.)


Note

You need to log in before you can comment on or make changes to this bug.

Description From 2006-01-05 14:59:05 
Author and embed SAML assertions in MyProxy based on a non-SAML authentication
(any method supported by MyProxy). The authentication assertion will be used for
querying the attrbute authority, the GT module will look for the embedded
assertion in the certificate used to authenticate with the container.  

An example profile for this is available here:
https://authdev.it.ohio-state.edu/twiki/bin/view/GridShib/MyProxyNonBrowserAttributePull

This is a building block also, this mechanism can be used in other profiles.
------- Comment #1 From 2006-10-05 18:57:16 ------- 
The binding process must conform to the X.509 Binding for SAML Assertions. See
https://authdev.it.ohio-state.edu/twiki/bin/view/GridShib/X509BindingSAML and
http://dev.globus.org/wiki/SAML_in_X.509_Validation for details.
------- Comment #2 From 2007-09-14 13:39:51 ------- 
With the implementation of the extapp callout in MyProxy version 3.5 this bug
is satisfied.
------- Comment #3 From 2007-09-14 13:45:10 ------- 
A little premature on the close. Need to document how to use the extapp callout
with the  GridShib SAML-Tools.
------- Comment #4 From 2008-10-01 00:34:55 ------- 
(In reply to comment #3)
> A little premature on the close. Need to document how to use the extapp callout
> with the  GridShib SAML-Tools.

http://security.ncsa.uiuc.edu/research/grid-howtos/maevizgroup.php
First Last Prev Next    No search results available