Uploaded image for project: 'Shibboleth User Interface'
  1. Shibboleth User Interface
  2. SHIBUI-960

Conditionally add entity role whitelist filter

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • None
    • None
    • None
    • Rel 5 - 1/24 - 1/31 - DA Cont., R5 Final QA

    Description

      The Shibboleth UI does not mark/enforce adding an EntityRoleWhitelist to a metadata provider as "required", but if you do not add one, the backend writes out an empty  EntityRoleWhitelist filter into the resultant metadata-providers file (whether written to disk or obtained from the end point.) And an  empty  EntityRoleWhitelist filter effectively filters out all entities, leaving no entities at all from the aggregate. The best solution is to only write out the  EntityRoleWhitelist filter when the user has selected one or more roles for that whitelist, and never write out an empty one.

      p.s. The alternate solution would be for the front end to mark slecting one or more roles for an  EntityRoleWhitelist filter as required, and force the user to do so before saving the provider.

      Attachments

        Activity

          People

            WSmith Bill Smith (Inactive)
            jonathan.johnson@at.internet2.edu Jonathan Johnson (unicon.net)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - 3 hours Original Estimate - 3 hours
                3h
                Remaining:
                Time Spent - 3 hours, 31 minutes Remaining Estimate - 1 minute
                1m
                Logged:
                Time Spent - 3 hours, 31 minutes Remaining Estimate - 1 minute
                3h 31m