Versions Compared

Old Version 4

changes.mady.by.user Former user

Saved on

compared with

New Version 5

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: ShibURLScheme required

...

  • UseCanonicalName On
  • ServerName:Port set to the ServerName and Port of the Apache Proxy
    Code Block
    ServerName mainsite.example.org:443
    even though the servername is actually backend.example.org and is only serving HTTP on port 80.
  • see also ShibURLScheme in SPProtectionConfig, which is needed for Apache < 2.2 (question)set ShibURLScheme https (see SPProtectionConfig) for the server (e.g. somewhere in httpd.conf)

shibboleth.xml

  • set Hostname in RequestMap to "mainsite.example.org", ignore scheme and port.
  • in Applications -> Sessions set (or leave the default) handlerURL="/Shibboleth.sso" and set handlerSSL="true"

...