Hi,
You are assuming 100% trust of the proxy to tell you the truth about
which account it authenticated, without any actual key exchange. The potential for disaster here is huge! Of course you have trust the auth server in some way, but it is necessary for security-in-depth to demand some additional checks every time.
Yes. Thats the key point behind a single sign on system. You have to trust your "proxy" or in this case the shibboleth auth server 100%. But thats the way SSO Systems work. It is the same with kerberos. When you login you get a "auth token", with that token you get access to all resources you need/want if you are authorized. Shib is working the same, when you authenticate you get some "auth token" (i think it is some form of signed cookie). Clearly the app behind such an auth mechanism must trust it. Martin
_______________________________________________ DBmail mailing list [email protected] https://mailman.fastxs.nl/mailman/listinfo/dbmail
