[LON-CAPA-admin] SSO html
Guy Albertelli II
guy at albertelli.com
Wed Aug 22 14:17:55 EDT 2007
Hi Mark,
> It turns out that I only need to install shibboleth on one machine and set
> one machine to have the other authentication method.
'other authentication method' ?
> Once REMOTE_USER is
> set, the other systems are very happy to have the user logged in.
>
> This brings up two questions:
>
> * Is this a security problem?
Well since we aren't authenticating anyone the security is in how
REMOTE_USER get's set.
I'm not sure what you mean by 'other authentication method' so it
isn't clear to me how REMOTE_USER is being set to a value.
> * If I still include an SSO logout message file on the other machines, but
> don't say otherauthen yes, does the message show up?
It should.
--
guy at albertelli.com 0-7-0-9-27,137
More information about the LON-CAPA-admin
mailing list