/opt/shrine/tomcat/lib/shrine.conf, /opt/shrine/tomcat/lib/override.conf

shrine.conf and override.conf, located in Tomcat's lib directory, specify the behavior of the Shrine application. Configuration of Shrine SSO requires modifying the Shrine configuration files. You can make changes to either the shrine.conf file or the override.conf file. Once you have decided on which option to use, merge the sample config file into your existing Shrine configuration files:

Option 1:

add the following element under the top-level "shrine" element in shrine.conf


shrine {

  ...

  queryEntryPoint {

    ...

    authenticationType = "sso"

    ...

  }

  ...

  webclient {

    ...

    // ADJUST_FOR_YOUR_SITE
    ssoLogoutUrl = https://[your hostname]/Shibboleth.sso/Logout?return=[your idP's logout URL]
    sessionTimeout = "30 minutes"

    ...

  }

  ...

}

Option 2:

add the following to override.conf:

shrine.queryEntryPoint.authenticationType = "sso"

# ADJUST_FOR_YOUR_SITE
shrine.webclient.ssoLogoutUrl = https://[your hostname]/Shibboleth.sso/Logout?return=[your idP's logout URL]
shrine.webclient.sessionTimeout = "30 minutes"

Next Step:

SHRINE 4.1.0 Appendix A.8 - More Details: Using Authorization with SSO


  • No labels