/
2020-05-15

2020-05-15

Jul 29, 2021

Shibboleth Developer's Meeting, 2020-05-15

Call Administrivia

09:00 Central US / 10:00 Eastern US / 15:00 UK / 17:00 FI

Calls are normally the 1st and 3rd Fridays of each month. Next call Friday 2020-06-05.

60 to 90 minute call window.

 

Call Details

This week's call will use the Zoom system at GU, see ZoomGU for access info.

 

AGENDA

Add items for discussion here

Attendees:

 

Brent

  • OSJ-154 - Getting issue details... STATUS

    • Basic fix coded for all known ID bearing elements. Lightly tested indirectly in testbed.  In the middle of implementing fixes for wildcard attributes cases which use AttributeMap. Also need unit testing.

  • OSJ-310 - Getting issue details... STATUS

    • Fix coded and tested in testbed, uses new OSJ-154 behavior.  Re-marshall the Response in DecryptAssertions when any were decrypted.

Daniel

  • IDP-1603 - Getting issue details... STATUS
     

  • IDP-1602 - Getting issue details... STATUS

Henri

  • JOIDC-5 - Getting issue details... STATUS

    • Progressing with MDDriven profile configurations:

      • Attribute releasing was straightforward

      • Setting defaultAuthenticationMethods didn't work without setting p:ignoreUnmappedEntityAttributes="false" for shibboleth.MDDrivenListProperty. To be investigated further.

Ian

 

Marvin

 

Phil

  • IDP-1588 - Getting issue details... STATUS
     Progressing the Duo authn plugin.

  • IDP-1606 - Getting issue details... STATUS
     - minor issue when constructing flow tests. May need fixing in opensaml call sites. 

 

Rod

  • IDP-1595 - Getting issue details... STATUS

    • Built a plugin for Nashorn

    • Making changes to the document as development proceeds.  For Instance

      • Use Resource  not URL  to point to remote information.

      • Initial leap of faith install

    • Built a PluginState  class to give the definitive "what is the state of this plugin right now" statement

    • Started on trust and signing.

      • Need to work out how to to signing key revocation easily (probably another endpoint).

 

Scott

  • Server move primarily - done I think, docs TBD

    • Thought this was going to need a patch, but it's unfixable

    • Am fully convinced we need to get off constructor-based wiring anywhere possible

 

Tom

  • Jenkins mostly operational on new box

    • storage tests ? run MariaDB/MySQL and/or PostgreSQL via Docker ??

Other