Shibboleth Developer's Meeting, 2017-06-02
Call Administrivia
10:00 Central US / 11:00 Eastern US / 16:00 UK
Calls are normally the 1st and 3rd Fridays of each month. Next call would be Friday 2017-06-02. Any reason to deviate from this?
60 to 90 minute call window.
This week's call will use the Zoom system at GU, see ZoomGU for see ZoomGU for access info.
AGENDA
- Bouncy Castle CVEs
- Any comments on straw man opensaml-bom module?
Attendees:
Brent
Jira Legacy server Shibboleth JIRA columns key,summary,type,created,updated,due,assignee,reporter,priority,status,resolution serverId 180d847f-bce4-36b2-9964-771bff586829 key JPAR-94 - Researching/evaluating Nimbus OIDC/OAuth2 library, which I missed before. Previously I only reviewed the Nimbus JOSE library.
- Will soon backfill changes for metrics/status page for recent metadata resolver enhancements
Daniel
Jira Legacy server Shibboleth JIRA serverId 180d847f-bce4-36b2-9964-771bff586829 key IDP-1178
Ian
- REFEDS talk:
- under-rehearsed, don't watch it
- far more people using MFA than I thought, even in Europe
- early clarification of which parts of current MFA solution will be deprecated will be appreciated
- far more people (like, 25 or 30) than I expected put their hands up as MDA users
Marvin
Rod
- Mostly SP
Jira Legacy server Shibboleth JIRA columns key,summary,type,created,updated,due,assignee,reporter,priority,status,resolution serverId 180d847f-bce4-36b2-9964-771bff586829 key IDP-1042
...
Jira Legacy server Shibboleth JIRA columns key,summary,type,created,updated,due,assignee,reporter,priority,status,resolution serverId 180d847f-bce4-36b2-9964-771bff586829 key IDP-1170 - XML schema TBD
- HttpClient docs, stil making some tweaks to fill in gaps, e.g. we don't have a way to do pre-emptive basic-auth
- Will work on helper code to handle deprecation warnings and then get focus back on SP
Tom
- jetty-base : download vs unpack > both
- just a handful of files
- download :
mkdir modules
wget some-versioned-path -O modules/idp.module
java -jar path-to-jetty-start.jar --create-startd --add-to-start=idp
- more suitable for deployers
- unpack :
wget some-versioned-path/idp-jetty-base.zip|.tgz
unpack ...
- more suitable for integration tests and Windows installer
- code changes to change from unpack to download, so do both
- both
- add [files] to idp.module as well as dependent modules like idp-logging, idp-backchannel, etc
- locations of [files] ?
- could remain in idp-jetty-base/src/main/resources
- could be GitWeb or downloads/ (possibly deployed via Jenkins)
- GitWeb docs for downloadable URLs ? gitweb.perl
Other