...
...
...
...
Building the
...
SP from Source on Linux
...
...
For notes on Installation see this topic
The following installation procedure will build the Shibboleth 2 SP and all its dependencies. Completion of the instructions will result in a functional and loaded but unconfigured SP installed under /opt/shibboleth-sp
. If you'd like to use an alternative directory, modify all paths accordingly.
Building Shibboleth
Building Shibboleth requires building or obtaining a cascade of dependent projects.
- The Boost headers. But you don't need to actually build or install the full Boost library set.cxxtest (optional, for unit test support)
- log4shib (or log4cpp, deprecated)
- zlib
- OpenSSL
- libcurl
- Xerces-C
- XML-Security-C
...
Code Block |
---|
./configure --with-log4shib=/opt/shibboleth-sp --enable-apache-13 --with-apxs=/usr/local/apache/bin/apxs --enable-apache-20 --with-apxs2=/usr/local/apache2/bin/apxs --prefix=/opt/shibboleth-sp |
Basic Configuration
These steps will configure Apache to load mod_shib
, supply it with proper host and scheme information, and start shibd
.
...
The basics are covered under the RPMInstall topic, but the file locations in a source build will generally be "self-contained" under a common prefix.
Additional considerations:
- The LD_LIBRARY_PATH
...
- will have to contain the path
...
- to the relevant libraries. This
...
- is required for both
...
- the
...
- shibd
...
- service and
...
- Apache
...
Code Block | ||
---|---|---|
| ||
export LD_LIBRARY_PATH=/opt/shibboleth-sp/lib |
...
- .
- There are sample Apache snippets in <prefix>/etc/shibboleth for each version of Apache. Use them as a sample to add
...
- your own
...
shibd
must be independently started and run. The daemon should in the future be loaded and monitored along with all other major services.
Code Block |
---|
/opt/shibboleth-sp/sbin/shibd |
...
By default, the Shibboleth module is configured to log information on behalf of Apache to /opt/shibboleth-sp/var/log/httpd/native.log
...
- commands, but don't include them directly because they are overwritten by upgrades.