Shibboleth Developer's Meeting, Feb 21, 2014

Call Details

Meeting URL: http://fuze.me/23362815

Toll / Intl #: +1 (201) 479-4595

Toll-Free #: N/A

Meeting Number: 23362815

Attendees:

Call Administrivia

10:00 Central US / 11:00 Eastern US / 16:00 UK

Dial-in attendee identification.

Next week will be the last Friday of the month, so we would normally skip it. Any reason to meet ?

60 to 90 minute call window.

Brent

Daniel

Ian

We're now on Spring Framework 4 (4.0.2) and Spring Web Flow 2.3.3 (latest) and everything still works. Huzzah!

I have some dumb questions about logging, exclusions and Spring.

Rod

Finally managed to test a test webflow, and so now fitting in attribute resolver/C14N tests for the C14N stages implemented so far. Thus far most bug fixing has been to change NameDecoderException exceptions (which are fatal and stop the flow) to SubjectCanonicalizationException exceptions (which signal to try the next decoder). C14N cascading is working really well - the tests try as Transient, then CryptoTransient, then direct.

I now have to complete testing (legacy flows) and backfill on things I skipped (NameIdentifiers, StoredId) and other work which I shelved.

Scott

Misc work:

relax message types in actions/functions
make lookup functions null and type-detecting where possible (return null instead of exception)

EndpointResolver completed, think we're about there re: binding config

Context population actions (oubound context, endpoint context)

RelyingParty design/usage -> starting to look at security contexts

Added message handler slots to ProfileConfig so we can interrupt current inbound chain to populate RP/Profile config and resolve the rest of the chain to run

Tom

IDP-368 : getId() / setId() either Identified/Identifiable or ~~Named/Nameable~~ or ?
IDP-369 : Custom prototype annotation or ~~interface providing isPrototype() / getScope()~~ ?
IDP-375 : Port audit and access logging, include error logging, any relevance to IDP-334 'idp -t' ?
JPAR-40 : Some artifacts still need to be uploaded to our third-party Nexus repo.
- I have some dumb questions regarding "public key not found"
JPAR-51 : Change Maven checksum policy from "warn" to "fail"
JSPT-34 : Propose that Unicon host their own Jenkins for integration tests, start with the Tomcat 6.0.33+ trustManagerClassName + "trust all certs" trust manager
Should message handlers be declared similar to actions rather than as a chain ?

Other