[shib_auth] Disable authentication for RSS feed
Kristof Bajnok
bajnokk at niif.hu
Wed Oct 17 20:20:31 CEST 2012
On 10/17/2012 05:17 PM, Pieter-Jan Drouillon wrote:
> I configured the shib_auth module to work with the university’s
> shibboleth. Everything works great, except for one thing.
>
> I have several views defined with a RSS feed attached to it. I have set
> the access restriction of this feed to ‘none’. However when opening the
> feed in a browser for instance, I receive a 403 forbidden message from
> apache.
>
I'm not really familiar with views and RSS, but if you get a 403, it is
most probably set by the Shibboleth SP (or Apache, depending on the
abstraction level).
> As the webmaster has turned off authentication for all RSS feeds, he
> thinks the problem should be solved within the drupal installation.
>
> Any thought on what else I look into or how to solve this particular
> problem?
If you can trace the HTTP flow with LiveHTTPHeaders or something, it can
be determined whether there is a SAML session initiation attempt what is
failing or the webserver simply rejects the request (which may or may
not be authenticated, this can be also guessed from the trace).
Kristof
More information about the shib_auth
mailing list