[shib_auth] can someone please provide some input to this problem?

Mon Jun 6 20:46:55 CEST 2011

OK. Can you give me a simple case of how people are ensuring authentication for certain sections of their Drupal sites? That might help me understand this better.

I am an expert at PHP and I have already started looking at the module code itself to see where I can modify it. I have to have this done this week--actually last week. And given Apache/Shibboleth/shib_auth all seem to work I think we are pretty much there. I mean the Shibboleth log in page is thrown up. They are authenticated against the IDP. Theya re redirected to the page. They are just not logged in as the "sign-in" link still appears.

Thanks.

-----Original Message-----
From: shib_auth-bounces at listserv.niif.hu [mailto:shib_auth-bounces at listserv.niif.hu] On Behalf Of Kristof Bajnok
Sent: Monday, June 06, 2011 2:43 PM
To: shib_auth at listserv.niif.hu
Subject: Re: [shib_auth] can someone please provide some input to this problem?

On 2011. June 6. 20:26:56 Tommy Peterson wrote:
> Anyway, when you said that splitting up the site for authenticated and
> unauthenticated parts isn't pratical . . . has this never been done with
> this module?

Not in a way you're trying to achieve. Drupal does not have any support for
this, as far as I know, so you have to do this manually, which seems to be
very complicated.

In theory it would be possible to write an extension to shib_auth, which could
automatically perform the session initiation redirect for certain nodes. If
you need this, then file a feature request for the module, but I can't promise
that it will be implemented soon. (It would need a configuration interface
something like the role assignment rules, therefore it needs another database
table, etc. Not an easy stuff.)

Kristof

_______________________________________________
shib_auth mailing list
shib_auth at listserv.niif.hu
https://listserv.niif.hu/mailman/listinfo/shib_auth

This message contains Devin Group confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail.
 Please notify the sender immediately by e-mail if you have received this e-mail in error and delete this e-mail from your system. E-mail transmissions cannot be guaranteed secure, error-free and information could be intercepted, corrupted, lost, destroyed, arrive late, incomplete, or contain viruses. The sender therefore does not accept liability for errors or omissions in the contents of this message which may arise as result of transmission. If verification is required please request hard-copy version.