/
2026-05-15

2026-05-15

Shibboleth Developer's Meeting, 2026-05-15

Call Administrivia

09:00 Central US / 10:00 Eastern US / 15:00 UK / 17:00 FI

Calls are normally the 1st and 3rd Fridays of each month. Next call would be Friday 2026-06-05. Any reason to deviate from this?

60 to 90 minute call window.

Call Details

This week's call will use the Zoom system at GU, see ZoomGU for access info.

AGENDA

  1. Patch release post-mortem

  2. Jenkins / Git access using public URLs

  3. June webinar

Attendees:

Brent

  • https://shibboleth.atlassian.net/browse/OSJ-442

  • IdP 5.2.2 release

  • Meeting logistics: I’ll be out June 4 - June 27, so this is my last meeting until July (and note July 3 is a US and university holiday - so maybe last meeting until July 17?)

Daniel

 

Henri

  • OpenID Federation

    • Spec version 1.1 has been approved, 1.0 split into generic and OIDC-specific parts

    • Trust Mark Status integration into profile configuration

      • remoteTrustMarkValidation -flag, defaults to true

    • Started populating the java-oidfed-common repository

      • Initial modules: oidfed-common-api / impl / conf-impl

      • Entity statements & their payload claims with (Jackson) implementations

      • Metadata policies and constraints

      • Profile configurations and navigation functions

      • Entity configuration flow

        • Beans implementing EntityConfigurationMetadataDecoratorinterface are auto-wired modify the metadata contents

    • Next up:

      • Trust chain resolution into java-oidfed-common

Ian

 

John

  • No updates. I continue to be swamped with personal obligations. I hope to be able to come up for air and be productive again in early June.

Marvin

 

Phil

  • OIDC-SP

    • Moving classes to appropriate packages

    • Moving tests over from the RP, adding tests, and cleaning up existing tests

    • Added post-data preservation and isPassive DDF lookup

    • Ran a successful flow against Entra (using my own Entra account). Can create a video of that.

    • Will start a branch to look at some early integration with the OID Fed work.

  • WebAuthn

    • Following the Yubico issues, testing their new version

Rod

  • Nothing substantive.

  • Firefight over the jetty bug in 12.1.9

  • Finally resuscitated my “docker in a dedicated machine” build environment.

  • Also plowing through the “lock down an SP agent install on Windows” bat file. Ick.

Scott

  • IdP / OpenSAML patch review

  • Jetty plugin release

  • Setting up plugin testing jobs

    • Takeaway is it’s easy and useful and also impossible in practice to keep green so we have to plan around that.

    • OIDC jobs have more complex inter-related testing risk so may need custom jobs with more stages

  • Merged SP state management work back from branches across the stack

  • Starting work on rest of SP logout support

  • Access to member list expanded to include technical management contacts, added control of list to the member pages

    • Will be using member list for webinar comms

Tom

  • Integration tests working now

  • Working on updating the Windows node/AMI to Server 2025

Other