[shib_auth] Shibboleth Protection Path
Nate Klingenstein
ndk at internet2.edu
Fri Apr 6 01:34:23 CEST 2012
Hi there,
A quick question for the developers of the module. The documentation
indicates that the entire Drupal directory should have Shibboleth
protection:
<Location /location_of/your_Drupal/installation>
AuthType Shibboleth
ShibRequireSession Off
# the following single line is only valid for Shib2
ShibUseHeaders On
require shibboleth
</Location>
Would it be possible instead to protect only the /shib_login/ path to
eliminate the need for Shibboleth to intercept all queries to the Drupal
environment? This is, of course, with the option "/Destroy Drupal
session when the Shibboleth session expires/" disabled.
<Location /location_of/your_Drupal/installation/shib_login>
AuthType Shibboleth
ShibRequireSession Off
# the following single line is only valid for Shib2
ShibUseHeaders On
require shibboleth
</Location>
I think this could somewhat improve the performance of the implementation.
Thanks,
Nate.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://listserv.niif.hu/pipermail/shib_auth/attachments/20120405/2ff4af9d/attachment.html>
More information about the shib_auth
mailing list