The Shibboleth V2 IdP and SP software have reached End of Life and are no longer supported. This documentation is available for historical purposes only. See the IDP v4 and SP v3 wiki spaces for current documentation on the supported versions.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

IdP OpenID Extension

This extension to the Shibboleth 2.x IdP adds support for OpenID, allowing the IdP to function as an OpenID 2.0 Provider.

Status

At this time, the OpenID Extension should be considered an "alpha" release. Future versions of the extension will likely differ considerably in terms of Java APIs, configuration, and functionality.

OpenID Support

This extension includes support for OpenID Authentication 2.0 (there is no support for OpenID 1.1). It includes support for OpenID Provider identifier selection as well as the use of opaque "directed identifiers". The IdP can optionally be configured to only interact with whitelisted relying parties, using a profile of SAML metadata.

The extension supports the OpenID Provider Authentication Policy Extension 1.0. There is currently no support for user attributes, though both Simple Registration and Attribute Exchange support are planned for a future version.

  • No labels