Monday, May 6, 2013

User Shibboleth for federated SSO

What is Shibboleth?

How does it works & what is the federated SSO?

Install Shibboleth and set up a SP

After we get the idea of Shibboleth and Federated SSO, we can start to set the components (In this post, we are not going to set up IDP components, and assume it is already there).
Install a Shibboleth SP (Service Provider)

And more config info can be found at:

Make the Shibboleth protected resources be retrievable to Java/Grails applications.

The Shibboleth SP is presently only implemented in C++ as a module for Apache httpd, IIS, and NSAPI. So the Java (Or grails) application can not read the SP protected Resources (normally is the authenticated User Info, with Shibboleth is attributes).

However, it's quite easy to use the Shibboleth SP to provide authentication information for Java servlets in a wide variety of servlet containers. 

The info to set up the connection between apache and java servlet containers, like tomcat, and make all SP attributes (authenticated user info) be visible/retrievable by the applications deployed in the containers can be found from the following link.

This tutorial also provides a demo application which can read SP attributes directly by using request.getArrtibute(attributeName). 

For Grails developers, you can install federatedGrails plugin and run command to generate the sample code for Authentication business logic and read it as a reference.

More details about Shibboleth can be found on its project wiki.
For these developers who want to set up IDP server using Shibboleth, technical info can be found on

I hope this post will be useful to all developers, like me, who are working on federation sso and want to know more knowledge in this topic.

********** Step by Step Example ************

There is a full example shows how to install Shibboleth and make the protected resources readable to Applications deployed on Tomcat.


  1. Information about JAVA have spread all over the world wide web, but this information is quite unique and attractive. Thanks for sharing it in here. Keep blogging

    JAVA J2EE Training Institutes in Chennai
    JAVA Training

  2. Thanks for sharing those useful basic programming stuff’s of Python, it helps me to explore my knowledge in programming...if you want to switch your career in developing area you should know the basic of programming’s for that you have to read python because it was the first programming language for more details contact the link.
    Python Training in Chennai|Python Training

  3. Thanks for sharing this pretty post to our knowledge, SAS is a program that assists to retrieve, managing and uploading the data & simply it’s an integration system of software for performing these actions, thanks for taking your time to discuss about this topic.
    sas training in Chennai|sas course in Chennai|sas training institute in Chennai

  4. Whatever we gathered information from the blogs, we should implement that in practically then only we can understand that exact thing clearly, but it’s no need to do it, because you have explained the concepts very well. It was crystal clear, keep sharing dude.
    Best Informatica Training In Chennai|Informatica training center in Chennai|Informatica training in chennai

  5. It’s really a good post; actually I just begin to learn above stuffs to get my career enhancement. Thanks for sharing the useful post I would to see your upcoming blogs here.
    SAS Training in Chennai|SAS Course in Chennai

  6. it is my pleasure to came your4 blog you have explained very well thanks for sharing this effective blog.

    sas training in chennai

  7. Thanks for sharing those useful basic programming stuff’s of Python, it helps me to explore my knowledge in programming.
    Web Designing training in noida | SAS Summer Training in Noida | Java Training in Noida