Page History
...
- entityID: the ID of our Service Provider (SP)
- REMOTE_USER: how REMOTE_USER will be populated. Note that "ecommonsid which is specific to HMS IT, comes first, so REMOTE_USER will be set to its value)
- The sessionHook is the URL of code running on Tomcat. It will run before Shibboleth redirects the user to the wanted URL after the user authenticates. More on this later.
<ApplicationDefaults entityID="https://shrine-sso-node01.catalyst.harvard.edu"
REMOTE_USER="ecommonsid eppn uid persistent-id targeted-id"
sessionHook="/shrine-api/sso/rest/authentication/consume"
signing="true"
>
Within the ApplicationDefaults element, the <ApplicationDefaults><Sessions> element
- entityID is the URL of the idP to use for authentication
<SSO entityID="http://sso.med.harvard.edu/adfs/services/trust">
SAML2
<
...
/SSO>
Tomcat Configuration
- Accessing data received from the idP (Request Headers)
...
Overview
Content Tools