2024-02-02
Shibboleth Developer's Meeting, 2024-02-02
Call Administrivia
09:00 Central US / 10:00Â Eastern US /Â 15:00Â UK / 17:00 FI
Calls are normally the 1st and 3rd Fridays of each month. Next call would be Friday 2024-02-16. Any reason to deviate from this?
60 to 90 minute call window.
Call Details
This week's call will use the Zoom system at GU, see ZoomGU for access info.
AGENDA
Brief update on grant proposal
Review of 5.1 work TBD
Target perhaps 2/19 or 2/26 for a release…
Thymeleaf discussion
Co-existence seems plausible, though doing as a plugin probably isn’t
More control over view resolvers is a need
Pending ability to verify keys, 5.1 is a possibility, if not it will have to wait for 5.2
CSP seems difficult if not impractical but could be done via meta tags as a fallback
In parallel, Marvin will consider work on redoing the default UI with more modern CSS tools, we can slip this in at any point that we’re happy with the work. TBD if that would be Thymeleaf only.
If and when we have templates available, adding additional modules to install one set of templates or the other may be the best way to have them co-exist
(PS) Some TIIME updates if there is…time.
Attendees:
Brent
OSJ-391: Default supported TLS protocols appears too broadClosed
Have a couple of solutions for the custom parser issue. Details in the issue. Not mutually exclusive.
Â
Daniel
Â
Henri
Offline today, apologies
Not too much progress since last meeting on technical tasks due to work on grant last week and TIIME this week
Ian
Back on the MDA at last.
Will probably try to prototype some of the transactional release idea when I come to release that.
John
Â
Marvin
Â
Phil
WebAuthn
Adaptor to adapt the Credential Repository interface to the StorageAPI
Cleanups
Tom has been getting it into Jenkins
Very basic configuration documentation in progress.
Â
Rod
Not able to attend but may lurk for the first part.
Mostly time spent looking at the non web part of Thymeleaf. I've shared my findings with Scott
Started looking at the EDS patches from CNRS - accepted 2 of 3, expect to accept the third
Next up is probably building a jetty installer for 10.0.18.with the new process
I'll document it
And get someone to test
Then do the same for 10.0.20
Scott
Production javadoc release work, updated Java Product Release Process
Prototyping Duo Passwordless in my real system
Grant proposal last week
Thymeleaf review
More 5.1 backlog and new miscellany
Tom
IDP-2228: Safari integration testsOpen making progress
JWEBAUTHN-2: Add the WebAuthn plugin to JenkinsClosed probably should not use Jenkins pipelines for matrix jobs - we loose the UI table
expiring-password
nit : maybe the default config should includep:useUnfilteredAttributes="true"
since it’s unlikely someone would be releasing their password expiration date as an attribute
Other
Â