Skip to content
Snippets Groups Projects
Commit 8a0ba95b authored by Olav Morken's avatar Olav Morken
Browse files

docs: Update documentation for bridging. 

git-svn-id: https://simplesamlphp.googlecode.com/svn/trunk@1812 44740490-163a-0410-bde0-09ae8108e29a
parent b27a8c30
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
docs/simplesamlphp-advancedfeatures.txt
+ 18
26
View file @ 8a0ba95b
...@@ -26,32 +26,24 @@ step :) ...@@ -26,32 +26,24 @@ step :)
Bridging between protocols Bridging between protocols
-------------------------- --------------------------
A bridge between two protocols is built using both an IdP and an A bridge between two protocols is built using both an IdP and an SP, connected together.
SP, connected together. To let a SAML 2.0 SP talk to a Shibboleth To let a SAML 2.0 SP talk to a SAML 1.1 IdP, you build a simpleSAMLphp bridge from a SAML 2.0 IdP and a SAML 1.1 SP.
IdP, you build a simpleSAMLphp bridge from a SAML 2.0 IdP and a The SAML 2.0 SP talks to the SAML 2.0 IdP, which hands the request over to the SAML 1.1 SP, which forwards it to the SAML 1.1 IdP.
Shibboleth SP.The SAML 2.0 SP talks to the SAML 2.0 IdP, which
hands the request over to the Shibboleth 1.3 SP, which forwards it If you have followed the instructions for setting up an SP, and have configured an authentication source, all you need to do is to add that authentication source to the IdP.
to the Shibboleth IdP. This is configured in the IdP hosted
metadata, and is controlled by the `auth` and `authority` **Example of bridge configuration**
parameters.
In `metadata/saml20-idp-hosted.php`:
**Example 1. Example of bridge configuration**
'auth' => 'default-sp',
A bridge configured with a SAML 2.0 IdP and a Shibboleth 1.3 SP: In
the `saml20-idp-hosted.php` metadata you configure the In `config/authsources.php`:
authentication to use Shibboleth 1.3 SP like this:
'default-sp' => array(
'auth' => 'shib13/sp/initSSO.php', 'saml:SP',
'authority' => 'shib13' ),
As no specific Shibboleth IdP is specified as parameter to the
`initSSO.php` script, the discovery service page will be shown. If
you want to connect the SAML 2.0 IdP to a specific Shibboleth 1.3
IdP, give the entity id as a parameter to the `initSSO.php`
script:
'auth' => 'shib13/sp/initSSO.php?idpentityid=shib13idp.example.org',
'authority' => 'shib13'
Attribute control Attribute control
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment