| Warning | ||
|---|---|---|
| ||
You should review this page and the htaccess page thoroughly because Apache 2.4 is much more complicated than earlier versions. In particular, if you're trying to combine Shibboleth with other authentication schemes (like Basic), you may need to enable the |
...
ShibPrefix | Corresponds to SHIBSP_PREFIX variable (typically only usable on Windows) |
ShibConfig | Corresponds to SHIBSP_CONFIG variable |
ShibSchemas | Corresponds to SHIBSP_SCHEMAS variable |
There's an additional Apache 2.x-only environment variable called SHIBSP_APACHE_PREREQ, which can be set to the name of a module that needs to run before the authentication hook runs. This is an experimental setting that was created as a possible fix for issues with module order, in particular the setting of additional response headers for, e.g., cross-origin use cases. There has been little reproduction of these problems or any clear sign of what the solution is, and this option hasn't really gotten much testing.
Server / VirtualHost Options
...
| Note | ||
|---|---|---|
| ||
You MUST supply the |
One of the "quirks" (I would say "bugs") in Apache is that it requires a complicated set of inter-related general commands to be in place in order for an "auth" module to actually "see" a request. Just because you load the module doesn't mean Apache will ever call on it to do any work. This can make things confusing; if you see Apache just serving up content and the SP seems to be ignoring the requests, the lack of these commands in place is is usually the problem.
...