>>> On 26/01/2011 at 08:51, in message <002701cbbd36$49e291e0$dda7b5a0$@com>, "Rod
Widdowson" <[log in to unmask]> wrote:
> Andy,
>
> Can you jump in with some real world experience here
>
>> - SAML2 SPs wil break personalisations - this is guaranteed from what I've
> read so far
Sorry for being so quiet, you would find that to be the case if you had me in person too, I've got pneumonia can hardly talk and am off work at the mo! I''ve been meaning to dive in on the discussion but there's been a couple of local crises on other fronts I've been attending to with the limited energy I have!
Our migration to Shibboleth 2 was pretty much unnoticable. Everything carries on working as before. If you go through the wayf it forces SAML1 but going direct to SPs I've noticed that a growing number are "preferring" SAML2 so thats what they get.
There was no loss of personalisation when we moved over, I'd verified in advance that ePTID generated the same hash.
Testing with my own SP I've verified that I get the same hash passed through to the SP whether you talk to it in SAML1 or SAML2 so there is absolutely no reason for a loss of personalisation.
Anything else you want me to say? Basically the conversion was a non event.
Andy
************************************************************
Please consider the environment. Do you really need to print this email?
The University of Dundee is a registered Scottish charity, No: SC015096
|