Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3

...

Second, the RemoteUser Login Handler is configured to be triggered by a special authentication context class:

Code Block
xml
xml
titlehandler.xmlxml
<LoginHandler xsi:type="RemoteUser">
    <AuthenticationMethod>
        urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport:BasicAuthn
    </AuthenticationMethod>
</LoginHandler>

...

  • uses the redirect profile for authentication requests.
  • requires the basic authentication at the IdP.
  • uses the artifact profile for attribute consumption.
Code Block
xml
xml
titleshibboleth2.xmlxml
<SessionInitiator type="Chaining" Location="/WebDAVLogin" id="WebDAVLogin"
  entityID="https://idp.example.org/idp/shibboleth"
  target="https://webdav.example.org/">
    <SessionInitiator type="SAML2"
      acsIndex="6" <!-- urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact -->
      template="bindingTemplate.html"
      outgoingBindings="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
      authnContextClassRef="u:o:n:tc:SAML:2.0:ac:classes:PasswordProtectedTransport:BasicAuthn"/>
</SessionInitiator>

...