Uploaded image for project: 'UX Product'
  1. UX Product
  2. UXPROD-1612

Make the SAML(SSO) metadata file available through a public (Edge) URL in order to enable automatic configuration of the iDP

    XMLWordPrintable

    Details

    • Type: New Feature
    • Status: Blocked (View Workflow)
    • Priority: P3
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None
    • Template:
    • Potential Workaround:
      Hide
      HK: Right now, this can be done manually. Not ideal, but it works.
      CPT: Chalmers has this working manually. See description in this JIRA issue.
      Show
      HK: Right now, this can be done manually. Not ideal, but it works. CPT: Chalmers has this working manually. See description in this JIRA issue.
    • Back End Estimate:
      Large < 10 days
    • Estimation Notes and Assumptions:
      Assume the API to donwload the SAML MD file already exists and must be made publicly accessible.
    • Calculated Total Rank:
      23
    • Kiwi Planning Points (DO NOT CHANGE):
      1
    • Rank: Chalmers (Impl Aut 2019):
      R2
    • Rank: Chicago (MVP Sum 2020):
      R4
    • Rank: Cornell (Full Sum 2021):
      R2
    • Rank: Duke (Full Sum 2021):
      R4
    • Rank: 5Colleges (Full Jul 2021):
      R4
    • Rank: GBV (MVP Sum 2020):
      R4
    • Rank: Hungary (MVP End 2020):
      R4
    • Rank: Lehigh (MVP Summer 2020):
      R2
    • Rank: MO State (MVP June 2020):
      R4
    • Rank: TAMU (MVP Jan 2021):
      R4
    • Rank: U of AL (MVP Oct 2020):
      R4

      Description

      Today you need to be logged in in order to obtain the metadata file that you will have to send to your iDP manager, usually the University's central IT department.

      The file can only be obtained via Settings -> Tenant -> SSO settings -> Download Metadata.

      From time to time the certs/signatures changes, and so also the metadata file.

      In order to enable the IdP to auto update its settings with this new metadata file,the file could must be available via an "unauthenticated" url as well as via the user interface. This information does not have to be hidden behind login since it only contains public information.

        TestRail: Results

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                jakub Jakub Skoczen
                Reporter:
                ttolstoy Theodor Tolstoy
                Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                  Dates

                  Created:
                  Updated:

                    TestRail: Runs

                      TestRail: Cases