Hi everyone,
I've been having some problems getting Shibboleth and Dspace to play nice
together, and I'm hoping that someone can help me see where I'm going wrong.
Our current setup is Dspace 4.1 served by Tomcat 7 (on port 8080) with
authentication handled through Shibboleth 2.5.2 via Apache httpd 2.4.6 (on port
80).
The problem: After authenticating through Shibboleth, users are being
redirected directly to Tomcat, bypassing httpd. This generates an
"Authentication Failed" message since Tomcat isn't involved with the Shibboleth
authentication, only httpd is.
Background: Everything was set up based on the Shibboleth Authentication
section of the Duraspace wiki, with one additional change. In the
shibboleth2.xml config file, I set a manual handlerURL inside the Sessions tag.
That URL ensures that requests for /Shibboleth.sso go to httpd instead of
Tomcat. I found that if I didn't set it explicitly, I'd get a "No peer endpoint
available" Shibboleth error instead of being redirected to our institution's
Single Sign On page.
I don't have a lot of experience with Apache or Shibboleth, so I'm hoping that
a more seasoned veteran can steer me in the right direction. I wasn't sure what
information would be pertinent, so I can certainly provide more if needed.
Thanks in advance!
Bryson Duda
Systems Support Specialist
Information Systems and Technical Services University of Lethbridge Library
Phone: 403-332-4462
------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
DSpace-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-tech
List Etiquette: https://wiki.duraspace.org/display/DSPACE/Mailing+List+Etiquette
