[shib_auth] can someone please provide some input to this problem?

Mon Jun 6 21:25:40 CEST 2011

But when you say " Usually the content does not show up until the
user is authenticated." What do you mean? I don't want the content to show up until they authenticate. And I want an error message to show up when they bookmark secure content.

I guess I am missing a finer point here.

-----Original Message-----
From: shib_auth-bounces at listserv.niif.hu [mailto:shib_auth-bounces at listserv.niif.hu] On Behalf Of Kristof Bajnok
Sent: Monday, June 06, 2011 3:07 PM
To: shib_auth at listserv.niif.hu
Subject: Re: [shib_auth] can someone please provide some input to this problem?

On 2011. June 6. 20:46:55 Tommy Peterson wrote:
> OK. Can you give me a simple case of how people are ensuring authentication
> for certain sections of their Drupal sites? That might help me understand
> this better.

Unfortunately I don't know. Usually the content does not show up until the
user is authenticated. Or if they try to access it by bookmarking it, they get
an error message.

> I am an expert at PHP and I have already started looking at the module code
> itself to see where I can modify it. I have to have this done this
> week--actually last week. And given Apache/Shibboleth/shib_auth all seem
> to work I think we are pretty much there. I mean the Shibboleth log in
> page is thrown up. They are authenticated against the IDP. Theya re
> redirected to the page. They are just not logged in as the "sign-in" link
> still appears.

You should maintain a list of nodes for which automatic redirects are to be
performed. There is a function that constructs the URL where the user should
be redirected, so use that. You should understand the logic at the beginning
of shib_auth_init, and do the redirect there. However, I'm not sure how to do
a HTTP 302 redirect properly at Drupal init hook, ask the Drupal devs if you
can't manage that.

Please be sympathetic that I can't really support this kind of development. If
I could, I would do it myself.

Kristof

_______________________________________________
shib_auth mailing list
shib_auth at listserv.niif.hu
https://listserv.niif.hu/mailman/listinfo/shib_auth

This message contains Devin Group confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail.
 Please notify the sender immediately by e-mail if you have received this e-mail in error and delete this e-mail from your system. E-mail transmissions cannot be guaranteed secure, error-free and information could be intercepted, corrupted, lost, destroyed, arrive late, incomplete, or contain viruses. The sender therefore does not accept liability for errors or omissions in the contents of this message which may arise as result of transmission. If verification is required please request hard-copy version.